LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 04-16-2018, 03:15 PM   #1
linustalman
Senior Member
 
Registered: Mar 2010
Location: Ireland
Distribution: Debian 9 Stable (Stretch) x64
Posts: 2,766

Rep: Reputation: 336Reputation: 336Reputation: 336Reputation: 336
Question What are the risks of using very old version of Android?


Hi.

I've got an over 4 years old smartphone. It's version of Android is 4.1.1 (Jelly Bean). What are the risks of using this? Can my SIM card get hacked? Can my home network get compromised?

Thanks.

Last edited by linustalman; 04-16-2018 at 04:02 PM.
 
Old 04-16-2018, 08:27 PM   #2
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 9,078
Blog Entries: 4

Rep: Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169
I don't have a specific answer, and of course a phone is a fairly self-contained device, but I do think that you might wish to see if you can somehow upgrade the version of Android that is on that phone.
 
Old 04-16-2018, 08:41 PM   #3
jefro
Moderator
 
Registered: Mar 2008
Posts: 18,373

Rep: Reputation: 2738Reputation: 2738Reputation: 2738Reputation: 2738Reputation: 2738Reputation: 2738Reputation: 2738Reputation: 2738Reputation: 2738Reputation: 2738Reputation: 2738
Every security issue that has been discovered will be in that device forrrreeeevvvvveeerrr. Thanks Google.
 
Old 04-16-2018, 10:31 PM   #4
rokytnji
LQ Veteran
 
Registered: Mar 2008
Location: Waaaaay out West Texas
Distribution: AntiX 17
Posts: 5,531
Blog Entries: 20

Rep: Reputation: 2628Reputation: 2628Reputation: 2628Reputation: 2628Reputation: 2628Reputation: 2628Reputation: 2628Reputation: 2628Reputation: 2628Reputation: 2628Reputation: 2628
Posting on my unsupported Parrot operating system on this chromebook .

Waiting on my liquid solder syringe that will inject chemical epoxy like solder through a needle to jumper out my write protect socket on this Acer C710. Tinfoil jumper and other methods were a washout. Linux current something or another will make it on here eventually thanks to John Lewis.

Hell. My wife has one of those early IBM Pads with I think Android 2.something on it that she still uses.

She is white collar worker and is not sweating our bank account getting hacked.
I bet your doctors office is more weaker than your phone.

With all the over population on this planet. Wearing the tin foil hat thinking it is all about you.
Might just be a bunch of chicken little on too little of subject. You.

Hell. Right after Windows, Facebook, and every one else from Twitter to Target has let go dark web info on users. Why worry? I sure don't.
 
Old 04-17-2018, 12:46 AM   #5
ondoho
LQ Addict
 
Registered: Dec 2013
Posts: 8,943
Blog Entries: 5

Rep: Reputation: 2179Reputation: 2179Reputation: 2179Reputation: 2179Reputation: 2179Reputation: 2179Reputation: 2179Reputation: 2179Reputation: 2179Reputation: 2179Reputation: 2179
it is worth checking out xda developers or some such to see if this device's OS can be upgraded.

if not, and something i recommend in any case:

uninstall ALL google apps, and use apps from f-droid instead.
adding the right repos, you have access to constantly updated, non-proprietary versions of firefox, for example.
 
Old 04-17-2018, 03:58 AM   #6
fatmac
Senior Member
 
Registered: Sep 2011
Location: Upper Hale, Surrey/Hants Border, UK
Distribution: AntiX
Posts: 2,422

Rep: Reputation: Disabled
I don't think there is much to worry about using older versions of Android, as most people don't have anything important on these types of machines, of course I wouldn't use it for online banking, but that's just me, I like to clear my ram after all transactions, so use a desktop for that.
 
Old 04-17-2018, 07:52 AM   #7
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 9,078
Blog Entries: 4

Rep: Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169Reputation: 3169
Fundamentally, I do not consider that phones were ever designed to be "secure devices," so I would never use one for banking, use a service like "Google Pay" or "Apple Pay," or store anything at all of particular value or importance on it.
 
Old 04-17-2018, 10:49 PM   #8
AwesomeMachine
LQ Guru
 
Registered: Jan 2005
Location: USA and Italy
Distribution: Debian testing/sid; OpenSuSE; Fedora; Mint
Posts: 5,326

Rep: Reputation: 965Reputation: 965Reputation: 965Reputation: 965Reputation: 965Reputation: 965Reputation: 965Reputation: 965
When the FBI advertised on the news media that it wanted Apple's help to crack the San Bernardino killers smartphone, but Apple refused, so the FBI hired hackers, it was all a ruse to placate the populace that phones are secure.

But for $1400 you can by software that will change the password on any smartphone, even if it's been locked.
https://www.elcomsoft.com/eift.html?r1=pr&r2=ios10
https://www.msab.com/products/xry/
 
Old 04-23-2018, 10:07 AM   #9
_roman_
Member
 
Registered: Dec 2017
Location: _Austro_Bavaria_
Distribution: gentoo / linux mint
Posts: 433

Rep: Reputation: 28
Quote:
Originally Posted by sundialsvcs View Post
Fundamentally, I do not consider that phones were ever designed to be "secure devices," so I would never use one for banking, use a service like "Google Pay" or "Apple Pay," or store anything at all of particular value or importance on it.
Same I do not use any banking on my ivybitch cpu loobphole notebook or on android. I only do banking on the bank terminals which are in the bank.

I would not recommend using email or any personal data on such a phone with such an outdated android. I think my nexus 4 had as first os something like 4.1.x android.

for a reasonable price you get a phone with recent up to date custom rom functionality. as e-mails are something personal and other things, i may recommend to replace your phone when it is not custom rom supported.

I also assume that you do not use facebook / whatsapp of course!
 
Old 04-28-2018, 07:59 AM   #10
linustalman
Senior Member
 
Registered: Mar 2010
Location: Ireland
Distribution: Debian 9 Stable (Stretch) x64
Posts: 2,766

Original Poster
Rep: Reputation: 336Reputation: 336Reputation: 336Reputation: 336
Post

Quote:
Originally Posted by sundialsvcs View Post
I don't have a specific answer, and of course a phone is a fairly self-contained device, but I do think that you might wish to see if you can somehow upgrade the version of Android that is on that phone.
Hi sundialsvcs. The phone cannot be upgraded.
 
Old 04-28-2018, 08:00 AM   #11
linustalman
Senior Member
 
Registered: Mar 2010
Location: Ireland
Distribution: Debian 9 Stable (Stretch) x64
Posts: 2,766

Original Poster
Rep: Reputation: 336Reputation: 336Reputation: 336Reputation: 336
Quote:
Originally Posted by ondoho View Post
it is worth checking out xda developers or some such to see if this device's OS can be upgraded.

if not, and something i recommend in any case:

uninstall ALL google apps, and use apps from f-droid instead.
adding the right repos, you have access to constantly updated, non-proprietary versions of firefox, for example.
Hi ondoho. Upgrading is not possible. I stopped using the google play store a long time ago. I've used F-Droid for a good while now.
 
Old 05-01-2018, 11:12 AM   #12
linustalman
Senior Member
 
Registered: Mar 2010
Location: Ireland
Distribution: Debian 9 Stable (Stretch) x64
Posts: 2,766

Original Poster
Rep: Reputation: 336Reputation: 336Reputation: 336Reputation: 336
The only things I use the smartphone for are podcasts, Telegram, taking photos/videos, recording audio. Nothing too sensitive except Telegram perhaps.
 
  


Reply

Tags
dangers, old android, old smartphone, risks


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Four Hidden Costs and Risks of Sudo Can Lead to Cybersecurity Risks and Compliance Problems on Unix and Linux Servers LXer Syndicated Linux News 2 11-21-2017 04:12 AM
LXer: Google risks everything if it doesn't grab Android round the throat LXer Syndicated Linux News 0 03-03-2016 03:33 AM
LXer: Android Security Improved in 2014, yet Risks Remain LXer Syndicated Linux News 0 04-05-2015 02:42 PM
LXer: FakeID and MasterKey Still Pose Risks for Android LXer Syndicated Linux News 0 01-09-2015 05:42 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:15 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration