Thread - Nostr Hypermedia

Relays: 5

Replies: 2

Generated: 19:20:08

Final final@stacker.news npub1hxx7...g75y

The December Android Security Bulletin is out, showing the security patches released for December. See the following: >Note: There are indications that the following may be under limited, targeted exploitation: CVE-2025-48633, CVE-2025-48572 We had these vulnerabilities patched already in the security preview channel of #GrapheneOS. 48633 was patched in 2025102301 and 48572 was patched in 2025092501 (**ALMOST 4 MONTHS AGO**) despite them being confirmed as exploited in the wild. Whatever threat actor was exploiting it was able to do so without much pushback for months even after being revealed. Samsung provided patches for 48572 early in October, but this is not every device or Android distribution. https://source.android.com/docs/security/bulletin/2025-12-01

2025-12-01 21:05:18 from 1 relay(s) 2 replies ↓

Replies (2)

Final final@stacker.news npub1hxx7...g75y

GrapheneOS can be used by normies who want to use all their normie apps and they will still be exponentially safer in doing so compared to running their apps on a device by a dubious OEM who isn't patching on time. What is happening here is a major reason why many Android devices lose the security race to iPhones. The amount of viable options of commercial off the shelf devices you can find at a store for people with high risk is grim. You would be better running an iPhone 17 if you are not going to be using GrapheneOS. I quite literally cannot recommend anything else to normies but these.

2025-12-01 21:24:02 from 1 relay(s) ↑ Parent Reply

Max max@towardsliberty.com npub1klkk...x3vt

That just makes me mad...

2025-12-02 04:12:21 from 1 relay(s) ↑ Parent Reply