[anon(10387168)]

Not interested in revisionist history, and neither would any other BlackBerry Security minded enthusiast! Now back to the issue at hand.

Posted via my Passport

[conite]

Not interested in revisionist history, and neither would any other BlackBerry Security minded enthusiast! Now back to the issue at hand.

Posted via my Passport

Huh? Read any and all posts I have ever written on the subject.

As for the issue at hand, you've been told: it appears just fine, but if you are paranoid, use NetGuard or remove it with adb. The end.

[anon(10387168)]

Paranoia does not come into to play. Verification that this app is not Malware is the goal of this thread. Personal opinions is all we have thus far and no concrete verification. Hopefully we can get there!

Posted via my Passport

[anon(10387168)]

It can be removed from the user-space via adb as stated above. I still see no evidence it's a problem at all though.

Can you explain what this is and how a laymen can do it? I have owned BlackBerry's for many years and have never had to block or remove a suspicious app. Thanks,

I'm not alone! I assure you!

Posted via my Passport

[conite]

Can you explain what this is and how a laymen can do it? I have owned BlackBerry's for many years and have never had to block or remove a suspicious app. Thanks,

I'm not alone! I assure you!

Posted via my Passport

If, despite the evidence to the contrary, you feel the need to block it, use NetGuard. Why wouldn't you be using NetGuard anyway if you are worried about trackers of any variety?

https://github.com/M66B/NetGuard/releases

To me, everyone should be using it.

[anon(10622733)]

You never installed an app from Nemory?

Can you explain what this is and how a laymen can do it? I have owned BlackBerry's for many years and have never had to block or remove a suspicious app. Thanks,

I'm not alone! I assure you!

Posted via my Passport

[anon(10387168)]

Mainly because, unlike you, I don't change a tire unless I know there is an issue, not a rumoured issue, a confirmed issue! That is the at the core of this thread! Hopefully someone in the know will comment!

Posted via my Passport

[anon(10387168)]

You never installed an app from Nemory?

For a K2? No!

Posted via my Passport

[anon(10622733)]

Nevermind. I suggest you put your phone into airplane mode so you will be able to sleep tonight.

For a K2? No!

Posted via my Passport

[conite]

Mainly because, unlike you, I don't change a tire unless I know there is an issue, not a rumoured issue, a confirmed issue! That is the at the core of this thread! Hopefully someone in the know will comment!

Posted via my Passport

Chetmanley monitored the connection log over 12 months. What more do you need?

No one is going to provide a notarized letter from the Queen of England.

[anon(10622733)]

How about a notarized letter from Lord Buckethead?

Chetmanley monitored the connection log over 12 months. What more do you need?

No one is going to provide a notarized letter from the Queen of England.

[anon(10387168)]

Nevermind. I suggest you put your phone into airplane mode so you will be able to sleep tonight.

Thank you! Very helpful as always!

Posted via my Passport

[chetmanley]

Can you explain what this is and how a laymen can do it? I have owned BlackBerry's for many years and have never had to block or remove a suspicious app. Thanks,

I'm not alone! I assure you!

Posted via my Passport

Here is how to disable system applications from a particular user profile (it is not possible to uninstall them completely without root).
https://forums.crackberry.com/blackb...ethod-1168996/

[bb10adopter111]

It can be removed from the user-space via adb as stated above. I still see no evidence it's a problem at all though.

When it comes to mitigating cyber risks, the standard is not to wait for a problem to emerge then remove the offending app. The standard is to minimize potential threats as much as possible. One of the most important things to assess before installing or using any piece of hardware or software is its source and the motivations of those providing it.

In the case of TCL, they are a Chinese company who, by law, must retain all data on their servers and make it available to the Chinese government. In addition, they have shown a pattern of installing apps without user consent with aggressive and potentially dangerous permissions.

Even giving TCL the benefit of the doubt that they have no malicious intent, I could not justify allowing any of their apps on my phone. Their actions have increased the possibility that sensitive data could be exfiltrated from my phone and stored on servers available to a nation that has cyber theft of IP and personal data as a strategic policy, with huge resources devoted to the work.

As for the lack of evidence by a single person monitoring their phone carefully, that only proves that his phone wasn't selected for compromise. In today's world, the kinds of automated malware that run around autonomously trying to infect every device are just background noise. The serious threats include persistent threats that are only activated by people who select their targets and launch sustained, intentional attacks.

Nation states release thousands of innocent-looking apps every year, many of them mundane, with the goal of distributing them to as many devices as possible so that, when they choose a target to compromise, there is an increased likelihood that they already have a foothold.

My conclusion is that the TCL apps likely could be exploited either with or without TCL's knowledge or consent, and that the best mitigation is to remove them. Cybersecurity risk consists of many, many low likelihood events with high severity when they occur. We never wait for proof before mitigating them.

Every app increases the risk of compromise. There is no reason to take a chance with one that is over aggressive in its permission requests and which stores data in a country with a policy of cyber intrusion and theft.

Z10 = BB10 + VKB > iOS + Android

[conite]

When it comes to mitigating cyber risks, the standard is not to wait for a problem to emerge then remove the offending app. The standard is to minimize potential threats as much as possible. One of the most important things to assess before installing or using any piece of hardware or software is its source and the motivations of those providing it.

In the case of TCL, they are a Chinese company who, by law, must retain all data on their servers and make it available to the Chinese government. In addition, they have shown a pattern of installing apps without user consent with aggressive and potentially dangerous permissions.

Even giving TCL the benefit of the doubt that they have no malicious intent, I could not justify allowing any of their apps on my phone. Their actions have increased the possibility that sensitive data could be exfiltrated from my phone and stored on servers available to a nation that has cyber theft of IP and personal data as a strategic policy, with huge resources devoted to the work.

As for the lack of evidence by a single person monitoring their phone carefully, that only proves that his phone wasn't selected for compromise. In today's world, the kinds of automated malware that run around autonomously trying to infect every device are just background noise. The serious threats include persistent threats that are only activated by people who select their targets and launch sustained, intentional attacks.

Nation states release thousands of innocent-looking apps every year, many of them mundane, with the goal of distributing them to as many devices as possible so that, when they choose a target to compromise, there is an increased likelihood that they already have a foothold.

My conclusion is that the TCL apps likely could be exploited either with or without TCL's knowledge or consent, and that the best mitigation is to remove them. Cybersecurity risk consists of many, many low likelihood events with high severity when they occur. We never wait for proof before mitigating them.

Every app increases the risk of compromise. There is no reason to take a chance with one that is over aggressive in its permission requests and which stores data in a country with a policy of cyber intrusion and theft.

Z10 = BB10 + VKB > iOS + Android

Again, use NetGuard to prevent any connections for any apps you feel concerned about for whatever reason at all.

[bb10adopter111]

Again, use NetGuard to prevent any connections for any apps you feel concerned about for whatever reason at all.

100% agree, it's a great resource and can significantly reduce risk if used correctly.

Z10 = BB10 + VKB > iOS + Android

[bh7171]

Again, use NetGuard to prevent any connections for any apps you feel concerned about for whatever reason at all.

Is this NetGuard on top of Blokada or in place of it?

[bh7171]

When it comes to mitigating cyber risks, the standard is not to wait for a problem to emerge then remove the offending app. The standard is to minimize potential threats as much as possible. One of the most important things to assess before installing or using any piece of hardware or software is its source and the motivations of those providing it.

In the case of TCL, they are a Chinese company who, by law, must retain all data on their servers and make it available to the Chinese government. In addition, they have shown a pattern of installing apps without user consent with aggressive and potentially dangerous permissions.

Even giving TCL the benefit of the doubt that they have no malicious intent, I could not justify allowing any of their apps on my phone. Their actions have increased the possibility that sensitive data could be exfiltrated from my phone and stored on servers available to a nation that has cyber theft of IP and personal data as a strategic policy, with huge resources devoted to the work.

As for the lack of evidence by a single person monitoring their phone carefully, that only proves that his phone wasn't selected for compromise. In today's world, the kinds of automated malware that run around autonomously trying to infect every device are just background noise. The serious threats include persistent threats that are only activated by people who select their targets and launch sustained, intentional attacks.

Nation states release thousands of innocent-looking apps every year, many of them mundane, with the goal of distributing them to as many devices as possible so that, when they choose a target to compromise, there is an increased likelihood that they already have a foothold.

My conclusion is that the TCL apps likely could be exploited either with or without TCL's knowledge or consent, and that the best mitigation is to remove them. Cybersecurity risk consists of many, many low likelihood events with high severity when they occur. We never wait for proof before mitigating them.

Every app increases the risk of compromise. There is no reason to take a chance with one that is over aggressive in its permission requests and which stores data in a country with a policy of cyber intrusion and theft.

Z10 = BB10 + VKB > iOS + Android

Is this really a TCL app?i Notes with BlackBerry logo it's a systems app for recording business meeting notes.

[bb10adopter111]

I am not sure we're all talking about the same app. There was an app on my phone called "Sound Recorder" from mie-alcaltel.support. That's the one I'm referring to that I removed.

I have no knowledge that it has ever misbehaved on any phone, but the fact that its permissions were overly aggressive and that its servers are in China gave me enough pause that I removed it.

Z10 = BB10 + VKB > iOS + Android

[chetmanley]

I am not sure we're all talking about the same app. There was an app on my phone called "Sound Recorder" from mie-alcaltel.support. That's the one I'm referring to that I removed.

I have no knowledge that it has ever misbehaved on any phone, but the fact that its permissions were overly aggressive and that its servers are in China gave me enough pause that I removed it.

Z10 = BB10 + VKB > iOS + Android

That doesn't sound normal. Which PRD do you have? I tried installing the mie-alcatel.support version of the Sound recorder app from apkmirror.com, and it wouldn't even install.

The app we are discussing is different and is signed by Blackberry LTD, although it is clearly a TCL app. The BB version also cannot be uninstalled or disabled (except disabled for the user via ADB).

[chetmanley]

Is this NetGuard on top of Blokada or in place of it?

Netguard in place of Blokada. Both applications make use of the android VPN service to funnel traffic, and it's not possible to run both simultaneously.

[bb10adopter111]

That doesn't sound normal. Which PRD do you have? I tried installing the mie-alcatel.support version of the Sound recorder app from apkmirror.com, and it wouldn't even install.

The app we are discussing is different and is signed by Blackberry LTD, although it is clearly a TCL app. The BB version also cannot be uninstalled or disabled (except disabled for the user via ADB).

Now I am confused. I have the AT&T Space Black KEYone. I had the app (yellow icon, if I remember it) on my phone. After reading the article on VPNPro's blog, I searched for it on my phone and dragged it to the uninstall bar, where it uninstalled. I now can find no app on my phone with either the word "sound" or "recorder" in the name.

[chetmanley]

Now I am confused. I have the AT&T Space Black KEYone. I had the app (yellow icon, if I remember it) on my phone. After reading the article on VPNPro's blog, I searched for it on my phone and dragged it to the uninstall bar, where it uninstalled. I now can find no app on my phone with either the word "sound" or "recorder" in the name.

Very strange.

My Silver Keyone and Key2 both have the BB/TCL Sound Recorder app called com.tct.soundrecorder.bb.
On both, it's a system app. In fact, when starting it for the first time, it even goes through a very "blackberry hub+" like sequence of intro slides describing how to use it, just like we see in any other BB Hub+ app (even though it's clearly a TCL app).

These are definitely not the same applications.

I'm curious how that Alcatel version ended up on your device. Maybe it was installed via the Preview App?

Which security patch are you on? Maybe the AT&T patches include different default applications?

[bb10adopter111]

Very strange.

My Silver Keyone and Key2 both have the BB/TCL Sound Recorder app called com.tct.soundrecorder.bb.
On both, it's a system app. In fact, when starting it for the first time, it even goes through a very "blackberry hub+" like sequence of intro slides describing how to use it, just like we see in any other BB Hub+ app (even though it's clearly a TCL app).

These are definitely not the same applications.

I'm curious how that Alcatel version ended up on your device. Maybe it was installed via the Preview App?

I remember installing a recorder app one day because I couldn't record notes on my phone in notes or tasks. This was after I performed a factory reset last fall

I'm pretty sure that was the app.
Z10 = BB10 + VKB > iOS + Android

[chetmanley]

I remember installing a recorder app one day because I couldn't record notes on my phone in notes or tasks. This was after I performed a factory reset last fall

I'm pretty sure that was the app.
Z10 = BB10 + VKB > iOS + Android

Did it come from the Play Store?