• c0mmando@links.hackliberty.org
    link
    fedilink
    arrow-up
    0
    arrow-down
    2
    ·
    1 year ago

    The diminished security resulting from the increased likelihood of a (single point of failure) supply chain attack.

    Yes its possible for malicious devs to trojan apps, but due to apk signing it is much more difficult for a third party entity to induce a supply chain attack, which is my real concern when it comes to phone security.

    If you have a lower threat model, this post isn’t for you…