Are newer android versions more resistant to 0-days than the previous

Sounds like carriers in your country use bands that the pixel can’t do then, that sucks.

1 Like

I was told the same bs by my carrier. You need to configure APN settings properly, etc.

1 Like

including your interaction with Siri

It seems pretty common for companies to break privacy promises/policies.

This doesn’t work this way.
I explained this here: Does stock Android even get Qualcomm/Mediatek updates? - #4 by SkewedZeppelin

Yes, older versions are missing hardening/security features and PSB patches, but they still must be patching issues in all previous ASBs up to the level they declare.
Android 12 and higher is still supported, although 12 will likely be dropped October.

I posted this here: Help understanding what data is commonly for sale - #2 by anonymous162
Most of those metrics are inferred.

3 Likes

Not sure an incident from 2019 is relevant here, considering that on device processing was not a thing in 2019 and was only introduced in 2021.

1 Like

In general, the longer code exists, the less 0-days are found for a project under as much scrutiny as Android. But …

  • older Android versions do not receive all security patches. ASB are just a backport of High and Critical AOSP patches. So you end up with having medium and low severity N-days unpatched
  • Some vendors are slow at patching, so you might get your patches with quite some delay and end up having N-days instead of 0-days which is worse
  • A significant percentage of 0-days were variants of previously reported vulnerabilities
  • 0-days for memory-safety related issues have significantly gone down for new code in Android due to increased use of memory-safe languages
  • On older versions you miss out on new security features, which would make overall security better and might mitigate some 0-days

Overall you should be more secure with the newest Android version, especially on a Google Pixel.

Recommended reading:

4 Likes

Check private cloud compute model. They will let you use chatgpt-4 for free without any account. If you are not good with, you can disable Apple intelligence. In public betas, I saw it can be disabled. Easier option is not to use it. :grinning: I definitely need Ai so many times, and it will save the use of Poe or chatgpt with an account.

Incident, but not an accident.
They were already claiming ‘what happens on your iPhone, stays on your iPhone’ before the fact above revealed.

I mean, I am not defending them for that. But as I said, the incident you mentioned comes from a time when sending audio data to apple was “Opt-out”. IIRC, everything became “opt-in” afterwards.

Also, we are literally splitting hairs here and diverted into something else. Even at that incident time, if your few second “Hey Siri” activation audio was heard by a contractor, that was in no way or form associated with your Apple ID.

Every security updates doesn’t mean you are safe, they are just fixing some things they knows.

But one thing that need to remember, 0day commonly used against high profile, companies , government…etc…

It’s pricey so nobody will use it just for fun

So, if you are just an average Joe, then you are fine.

I’m sorry if it’s a bit out of topic.

I would say that Android 14 made a step forward for most users:

’ *Android 14 blocks the installation of apps that target versions of Android below android 6 API.’ This was often used by malware to decreased security features.

source: Android 14 - Wikipedia