Google’s ‘Secret’ Update Scans All Your Photos

Per one tech forum this week

Stop spreading misinformation.

• https://grapheneos.social/@GrapheneOS/113969399311251057
• https://grapheneos.social/@GrapheneOS/113969401014384221
• https://grapheneos.social/@GrapheneOS/113979779852809361

SafetyCore Placeholder so if it ever tries to reinstall itself it will fail due to signature mismatch.

Thnx for this, just uninstalled it, google are arseholes

People don't seem to understand the risks presented by normalizing client-side scanning on closed source devices. Think about how image recognition works. It scans image content locally and matches to keywords or tags, describing the person, objects, emotions, and other characteristics. Even the rudimentary open-source model on an immich deployment on a Raspberry Pi can process thousands of images and make all the contents searchable with alarming speed and accuracy.

So once similar image analysis is done on a phone locally, and pre-encryption, it is trivial for Apple or Google to use that for whatever purposes their use terms allow. Forget the iCloud encryption backdoor. The big tech players can already scan content on your device pre-encryption.

And just because someone does a traffic analysis of the process itself (safety core or mediaanalysisd or whatever) and shows it doesn't directly phone home, doesn't mean it is safe. The entire OS is closed source, and it needs only to backchannel small amounts of data in order to fuck you over.

Remember the original justification for clientside scanning from Apple was "detecting CSAM". Well they backed away from that line of thinking but they kept all the client side scanning in iOS and Mac OS. It would be trivial for them to flag many other types of content and furnish that data to governments or third parties.

I didn't have it in my app drawer but once I went to this link, it showed as installed. I un-installed it ASAP.

https://play.google.com/store/apps/details?id=com.google.android.safetycore&hl=en-US

Gimme Linux phone, I’m ready for it.

Google says that SafetyCore “provides on-device infrastructure for securely and privately performing classification to help users detect unwanted content. Users control SafetyCore, and SafetyCore only classifies specific content when an app requests it through an optionally enabled feature.”

GrapheneOS — an Android security developer — provides some comfort, that SafetyCore “doesn’t provide client-side scanning used to report things to Google or anyone else. It provides on-device machine learning models usable by applications to classify content as being spam, scams, malware, etc. This allows apps to check content locally without sharing it with a service and mark it with warnings for users.”

But GrapheneOS also points out that “it’s unfortunate that it’s not open source and released as part of the Android Open Source Project and the models also aren’t open let alone open source… We’d have no problem with having local neural network features for users, but they’d have to be open source.” Which gets to transparency again.

The app can be found here: https://play.google.com/store/apps/details?id=com.google.android.safetycore

The app reviews are a good read.

For people who have not read the article:

Forbes states that there is no indication that this app can or will "phone home".

Its stated use is for other apps to scan an image they have access to find out what kind of thing it is (known as "classification"). For example, to find out if the picture you've been sent is a dick-pick so the app can blur it.

My understanding is that, if this is implemented correctly (a big 'if') this can be completely safe.

Apps requesting classification could be limited to only classifying files that they already have access to. Remember that android has a concept of "scoped storage" nowadays that let you restrict folder access. If this is the case, well it's no less safe than not having SafetyCore at all. It just saves you space as companies like Signal, WhatsApp etc. no longer need to train and ship their own machine learning models inside their apps, as it becomes a common library / API any app can use.

It could, of course, if implemented incorrectly, allow apps to snoop without asking for file access. I don't know enough to say.

Besides, you think that Google isn't already scanning for things like CSAM? It's been confirmed to be done on platforms like Google Photos well before SafetyCore was introduced, though I've not seen anything about it being done on devices yet (correct me if I'm wrong).

I switched over to GrapheneOS a couple months ago and couldn't be happier. If you have a Pixel the switch is really easy. The biggest obstacle was exporting my contacts from my google account.

More information: It's been rolling out to Android 9+ users since November 2024 as a high priority update. Some users are reporting it installs when on battery and off wifi, unlike most apps.

App description on Play store: SafetyCore is a Google system service for Android 9+ devices. It provides the underlying technology for features like the upcoming Sensitive Content Warnings feature in Google Messages that helps users protect themselves when receiving potentially unwanted content. While SafetyCore started rolling out last year, the Sensitive Content Warnings feature in Google Messages is a separate, optional feature and will begin its gradual rollout in 2025. The processing for the Sensitive Content Warnings feature is done on-device and all of the images or specific results and warnings are private to the user.

Description by google Sensitive Content Warnings is an optional feature that blurs images that may contain nudity before viewing, and then prompts with a “speed bump” that contains help-finding resources and options, including to view the content. When the feature is enabled, and an image that may contain nudity is about to be sent or forwarded, it also provides a speed bump to remind users of the risks of sending nude imagery and preventing accidental shares. - https://9to5google.com/android-safetycore-app-what-is-it/

So looks like something that sends pictures from your messages (at least initially) to Google for an AI to check whether they're "sensitive". The app is 44mb, so too small to contain a useful ai and I don't think this could happen on-phone, so it must require sending your on-phone data to Google?

Thanks for bringing this up, first I've heard of it. Not present on my GrapheneOS pixel, present on stock.

I suppose I should encourage pixel owners to switch from stock to graphene, I know which decide I rather spend time using. GrapheneOS one of course.

I didn't see it anywhere on my phone but ill look into it more after work. Thanks for the heads up.

Thanks. Just uninstalled. What a cunts

laughs in GrapheneOS

Thank you was able to find and uninstall the app with no issues

True or not, one can avoid the whole issue by using your phone as a phone, maybe to send texts, with location, mike, and camera switched off permanently, and all the other apps deleted or disabled. Sure, Google will still know you called your SO daily and your Mom once a week (NOT ENOUGH!), and that you were supposed to pick up the dry cleaning last night (did you?). Meh. If that's what floats the Surveillance Society's boat, I am not too worried.

Not on mine, it doesn't. I don't use the Play Store. I don't have Google Play Services. And I don't have Google Apps installed. And I'm running Lineage OS. So, fuck you Google.

I've just given it the boot from my phone.

It doesn't appear to have been doing anything yet, but whatever.

Fuck these cunt

Even with the latest update from Samsung, I am not seeing this app. My OnePlus did get it with the February update and I had to remove it.

I'd that what's killing my fucking battery like crazy lately?

Is there any indication that Apple is truly more secure and privacy conscious over Android? Im kinda tired of Google and their oversteps.

Hope they like all my dick pics

It didn't appear in my apps list so I thought it wasn't installed. But when I searched for the app name it appears. So be aware.

My question is, does it install as a stand alone app? Or is it part of a Google Play update chunk that you only find out after Play has updated? My system does not auto update (by design) so I'd like to know where it sources from.

The countdown to Android's slow and painful death is already ticking for a while.

It has become over-engineered and no longer appealing from a developer's viewpoint.

I still write code for Android because my customers need it - will be needing for a while - but I've stopped writng code for Apple's i-things and I research alternatives for Android. Rolling my own environment with FOSS components on top of Raspbian looks feasible already. On robots and automation, I already use it.

Seems to be innocuous, but there's no harm in removing it. Next update, it'll be returned, so the better solution long-term will be (if you're rooted) is to use an application to freeze it, which effectively disables it and it should survive and update. If you delete the app, a new update will put it back.

For those that have issues on Samsung devices: see here if you're getting the "App not installed as package conflicts with an existing package" error :

If you have a Samsung device - uninstall the app also from Knox Secure Folder. Entering to Secure Folder>Settings>Apps

What a pile of fuck.

What about the "Android System Intelligence" app that someone else mentioned here? I just realized I have that one. It sounds like it has the capabilities to spy and maybe even more.

Google harvesting all your data for profits. I’m shocked. Shocked I say.

Jesus thanks for posting this. Found it on my LG ThinQ.

Anyone have a fairphone? Thoughts about it?

Seriously…. Why do people continue to buy their products? They’re seemingly one of the most invasive security risks one could be involved with.

Great, it'll have to plow through ~30GB of 1080p recordings of darkness and my upstairs neighbors living it up in the AMs. And nothing else.

Dood they scanned all my furry porn

And interestingly enough my phone crapped out on this post. But at least I was still able to read the the post.

Huh. My device seems to have been skipped? I don't do anything special, I'm using Play Store and Play Services, and I'm up to date, but it's not showing up in my settings app list

Interestingly I don't have it on my stock samsung phone. I haven't updated it since oneui 6. Is safetycore installed by update or by GMS?

an app on all Android

not my android :)

BTW did anyone reverse engineer it? Or doing rn (I'm HTH)?

Thanks for posting, I just uninstalled

Samsung lets me uninstall it now problem.

Google photos has been "searchable by name" for years now. Tell it the name of a face in one photo and it can go search (pretty successfully) through all your photos for other photos containing that person. And, of course, once told, it never forgets.

Is it still a service when you are the product? Or, are you being served? https://en.wikipedia.org/wiki/To_Serve_Man_(The_Twilight_Zone)