How can I defend myself from banking apps?

Questions
21

Good no frills answer! :rofl:

That is exactly what I got going on transitioning my emails services and such.

Plus being on facebook marketplace I am kind of forced to have the app.

I have an older android that is mostly stock for my gmail (Till I can get transitioned away from them) and other apps where my identity is quite obvious anyways. I just run it of my hotspot a couple pf times a day to check in on emails and potentional market place sales.

On my primary device, I do not want any part of facebook, gmail and so on. Not even on my browser.

1 Like
22

I have another profile on my phone with GOS installed. I thought it was enough but yours is probably a sound advice!

23

for that just use a seperate user like people suggested not need for a burner phone

1 Like
24

As @phnx said apps do not have access to hardware identifiers like IMEI especially in Graphene

I would try the seperated user method first

1 Like
25

What’s a “sphonate”, if I may ask?

26

idk what are you talking about? who said that

27

But, as an example, sometimes GOS itself sends me a push notification saying a web player wants to access to my device information through DRM technologies (Can’t recall the name right now, “Way…something”?). It is asked and if you don’t give that authorization you can’t use the web app or the app itself!

28

That lmao

29

It’s definitely your internet connection; GOS doesn’t send those on its own.

30

misspell That’s what it is mb

1 Like
31

Weird Behavior

on browser it utilizes the Widevine DRM not whatever this is and does not need sensitive phone information beyond the point of what the level of Widevine is

32

Yeah, sorry, I meant Widevine! When I tried to access some web player on Vanadium, a pop-up appeared asking me to allow the access to my Widevine Id to the website.

33

it doesn’t need a widevine id
just widevine DRM
is it a streaming service like spotify or Netflix?

34

Yet another thing I do not yet understand. :sweat_smile:

I do not mind using separate devices. It is one helluva an airgap and there is no risk pf cross contamintion. It is one of those instances I do not have to trust software to do it’s job.

My lack of understanding is the driving force behind that decision. So many things to trust and background process failure points I may never know about.

Regardless of the promises of separate users on a aingle device, I will probably stick with this particular method :+1:

35

I’m with four different banks, none of which have physical branches, but all have websites that can be used for payments.

One was a neobank initially, until it was bought by a bigger bank.

Luckily, 3 of them work on GOS without Play Services. Unfortunately, the one that doesn’t, my main bank, has its own authenticator app which must be used for transfers and payments. That is the only reason Play Services is on my phone (in a separate profile).