Developer here. I hacked this app together after reading the story and didn’t touch it since, hence why it’s not very polished.
I’ve just released 0.2 which makes it clearer when no affected apps are installed.
For the out of the loop, but also lazy;
Android app that reveals installed apps which may be leaking your location data.
Additional info for the lazy: the name of the company is “Gravy Analytics”, hence the name “Gravy Scanner” for this app. It’s a large data broker, and they don’t bother with pesky little details like “informed consent”.
Anyway, they got hacked a month ago, and the hackers threatened to publicly release all the data.
“Leak”
Bro the data is being stolen for fucking criminals. Call this crime what is.
You got threat actors using contract law in bad faith to exploit stupid, poorly educated peasants
But hey good thing they got nothing to hide 🤡
Outlook being on that list is crazy.
Office 365 too
I’ve got several hits, but none of them have permission to request my location. If I understand the README correctly, that should mean I’m safe, right?
Location could also imply IP address-based location, and not necessarily GPS.
True, but at that point, every website I’ll ever visit and have visited in the past might be a threat, so that doesn’t really matter too much to me.
every website I’ll ever visit and have visited in the past might be a threat
In that sense, you are right. However, there are ways to cloak your IP address and location.
Privacy is a massive rabbit hole depending on what threat you are trying to protect yourself from. Sometimes, the effort (and the stuff that breaks along the way) isn’t worth it.
If location implies an area extending 300 km in either direction, does it really matter? To most people, not really.
I was surprised to see SoundCloud on the list, now I have to recreate my music list in newpipe 😁
Or go back to the good old days and download/rip what you like to .mp3, .ogg, or .flac depending on your peference.
I have several thousand songs on my phone that I can listen to without the need for an internet connection, subscription fees, accounts, or anything.
There are tons of good FOSS local music player apps out there that you should check out. I use Auxio from the F-Droid store but have used others in the past.
On desktop, I use Elisa.
You can make sure your library is always up to date with your desktop by using syncthing.
I get a blank screen. Broken or does that mean I have none? On GrapheneOS
We’re team “fuck no!”. Welcome to paradise.
Yay for team blank screen… I think?
Most likely, that means you’re clean. On mine, the output is just a white screen with a list of the affected apps… Clicking on one of them takes me to that app’s settings.
It does that one thing, with no explanations or instructions, so it wouldn’t surprise me to learn that it doesn’t show a message to indicate that nothing was found.
It means you have none
I guess one could install an impacted app to test.
I think it means you’re clean. I use GOS, it gave me one entry (Viber)
Same question, on vanilla android.
Ugh flightradar24 is a hit. Really??
I don’t need this app to know flightradar is a risk.
Vampire survivors? Damn
Thanks! I uninstalled everything it listed. Pluto.tv, outlook, and Sonic.
Welcome
Most British app ever made
i got one its a kids game which i already know it is shit but i have firewall and block the internet for it also now i deleted it now i’m clean cuz i already use 95% foss apps
