Open Source @lemmy.ml Sudo Sodium @lemdro.id 3w ago

GravyScanner : a FOSS Android app that reveals installed apps involved in Gravy Analytics data breach

github.com GitHub - steffandroid/gravy-scanner: Android app that reveals installed apps which may be leaking your location data via Gravy Analytics

Android app that reveals installed apps which may be leaking your location data via Gravy Analytics - steffandroid/gravy-scanner

GitHub - steffandroid/gravy-scanner: Android app that reveals installed apps which may be leaking your location data via Gravy Analytics

Free and Open Source Software @beehaw.org Sudo Sodium @lemdro.id 3w ago

github.com /steffandroid/gravy-scanner

21 comments

For the out of the loop, but also lazy:

Android app that reveals installed apps which may be leaking your location data.
- Additional info for the lazy: the name of the company is "Gravy Analytics", hence the name "Gravy Scanner" for this app. It's a large data broker, and they don't bother with pesky little details like "informed consent".
  
  Anyway, they got hacked a month ago, and the hackers threatened to publicly release all the data.
  
  https://slrpnk.net/post/17048112
Developer here. I hacked this app together after reading the story and didn't touch it since, hence why it's not very polished.

I've just released 0.2 which makes it clearer when no affected apps are installed.
- Good luck and thanks
Outlook being on that list is crazy.
- Office 365 too
- All kind of sh*t must be expected from closed source apps tbh
I've got several hits, but none of them have permission to request my location. If I understand the README correctly, that should mean I'm safe, right?
- Location could also imply IP address-based location, and not necessarily GPS.
  
  True, but at that point, every website I'll ever visit and have visited in the past might be a threat, so that doesn't really matter too much to me.
Ugh flightradar24 is a hit. Really??
I was surprised to see SoundCloud on the list, now I have to recreate my music list in newpipe 😁
- Or go back to the good old days and download/rip what you like to .mp3, .ogg, or .flac depending on your peference.
  
  I have several thousand songs on my phone that I can listen to without the need for an internet connection, subscription fees, accounts, or anything.
  
  There are tons of good FOSS local music player apps out there that you should check out. I use Auxio from the F-Droid store but have used others in the past.
  
  On desktop, I use Elisa.
  
  You can make sure your library is always up to date with your desktop by using syncthing.
Most British app ever made
Thanks! I uninstalled everything it listed. Pluto.tv, outlook, and Sonic.
- Welcome
Vampire survivors? Damn
Oh great, the Belgian good alternative for piece of shit Facebook marketplace is on there... 2dehands.

We can never have nice things...

Also Good Pizza Great Pizza 😢

This is actually a really handy app!

21 comments