Which is ironic, considering that the App Store is likely one of the largest malware distribution vectors on the planet.
Looking at one virus alone, the App Store distributed half of a billion copies of it to iPhones and iPads[1]. Similarly, there are multimillion dollar scams on the App Store, as well[2].
[1] https://www.vice.com/en/article/n7bbmz/the-fortnite-trial-is...
[2] https://www.theverge.com/2021/2/8/22272849/apple-app-store-s...
> But now, thanks to emails published as part of Apple's trial against Epic Games, we finally know how many iPhone users were impacted: 128 million in total, of which 18 million were in the US.
> "In total, 128M customers have downloaded the 2500+ apps that were affected LTD. Those customers drove 203M downloads of the 2500+ affected apps LTD," Dale Bagwell, who was Apple's manager of iTunes customer experience at the time, wrote in one of the emails.
> Apple also disclosed the apps that included the malicious code, some incredibly popular such as WeChat and the Chinese version of Angry Birds 2.
Still a huge deal, particularly in China, but considering all the virus really did was collect some device info (less information than most ad networks) (and maybe it was able to open URLs and popups on command)[1] and it was the biggest virus on the App Store ever (that I can find), maybe not as awful as you suggest.
The scams on the App Store, yeah that's pretty bad. Though, can you point me at a marketplace as big as the App Store without loads of scams?
[1]: https://www.lookout.com/blog/xcodeghost#what-does-it-do
You are shown that this is by no means as secure as they want you to believe.
Then you argue that "of course, with a market that big!"
So basically you are proving that Apple uses the excuse of security to hold a monopoly.
Suppose there were multiple app marketplaces for iOS. Then some of them could be extremely selective by finding a niche, and thereby be more trustworthy than any unified store that has to carry a million general purpose apps with only cursory evaluation from various publishers of little or unknown reputation.
Nah, that would mean that what really protects iOS users from malwares is just a good sandboxing mechanism and not the "human" control of the App Store. That would also mean that bypassing the App Store shouldn’t be a real security issue.
Not the person you're replying to but isn't that the point?
GNU/Linux repositories.
https://nitter.net/npm_malware has twenty postings in the last 19 hours, quite far from "without".
Maybe the issue is being so big then. Which is exactly why the EU did this in the first place. So Apple has yet another lever to comply: reduce their size.
Tech journalists have literally warned Android users that they need to be wary of apps from inside Google's walled garden.
> With malicious apps infiltrating Play on a regular, often weekly, basis, there’s currently little indication the malicious Android app scourge will be abated. That means it’s up to individual end users to steer clear of apps like Joker. The best advice is to be extremely conservative in the apps that get installed in the first place. A good guiding principle is to choose apps that serve a true purpose and, when possible, choose developers who are known entities. Installed apps that haven’t been used in the past month should be removed unless there’s a good reason to keep them around.
https://arstechnica.com/information-technology/2020/09/joker...
so, is it "safer"? what's "safer" about it? or is it really just a meme apple has successfully perpetuated about it's limitations?
A year ago, I also saw a fake advertisement for a squid game. These fake advertisements have already become a meme, but they also offer to download from Google Play a slightly similar game, where after quickly clicking on the screen, the smartphone will suddenly prompt you to buy an expensive subscription and then you will not be able to cancel it, because Google does not provide for them refund. This idea comes from SMS scams since j2me platform, and judging by the comments on this game, people are still losing money, especially if they leave their phones to children.
I don't use ios and won't say whether manual moderation there helps prevent the same crap, but let's not ignore that if you're not tech-savvy, this Android security alternative is pretty easy to get around.
these questions are silly if you pivot them to be about other things rather than the fruit company, just like the arguments that "[company] needs to run open-infrastructure so other companies can build commercial products on [company] servers".
It's rather obvious they're being asked in bad faith with the intention of dragging down the discussion. You know perfectly well what SELinux and application sandboxing are for, and that they're net benefits.
I take care of Android devices used by elderly people, and they have just zero issues. Not anymore than they would have with iOS.
All this is nonsense talk trying to help the indefensible position of Apple. Most people also use Windows computers with no monopolistic app store and even though sometimes they are problems they almost always come from user errors. Most of the time it's poor choices, generally from greedy behavior (trying to get stuff for free without knowing much).
If a user doesn't know what it's doing, it can ask someone for help or stick with Apple's App Store if that suits him. Allowing other possibilities for more competent people doesn't change this fact one bit.
Her phones become really slow because of this.
Sorry but the actual statistics from mobile security companies that track this stuff show otherwise. From Nokia's Threat Intelligence Report 2020 (https://pages.nokia.com/T005JU-Threat-Intelligence-Report-20...):
Among smartphones, Android devices are the most commonly targeted by malware. Android devices were responsible for 26.64% of all infections, Windows/PCs for 38.92%, IoT devices for 32.72% and only 1.72% for iPhones.
Android malware infections are an order of magnitude higher compared to iPhones.
(I tried to look for data from more recent years but iPhones don't show up in the reports after 2020.)
They need to “investigate”
