I suspect my new phone is spying on me?
1. Phone is idle
2. No app is allowed to access camera without permission.
I still see frequent notification(s) that camera is being accessed
@krock ROG5 phone with Stock Android 11 from manufacturer
@allsyed Be suspicious of any stock OS. If you want a more private phone, you might find some mod options in https://www.xda-developers.com/ for your device. If it were me, I would use the ROG5 for gaming and anonymous activities after removing the SIM and setting it up with no personal identifiers. I would use VPN and Orbot. Then I would use another device with a FOSS OS such as Graphene, Calyx, or LineageOS as an actual phone. I am sorry I have no better device advice.
@allsyed Any stock android is definitely spying on you, no doubt about it. The only question is how much exactly.
@allsyed install fdroid. Install app called classysharkxodus. It will scan your phone and show you which apps are sending telemetry data along with other permissions. Attach phone to pc with adb installrd and remove that Spyware from your phone.
@lnx Thanks for the suggestion. I have used Warden on my last phone
@allsyed I can't find any information on what exactly Vigilante is. Is it a stock app? Stock Android is definitely tracking you, but randomly accessing your camera would be implemented on the OEMs part. Cause that's a hell of a lot of traffic and storage for something that 98% of the time will be the inside of a pocket, a ceiling, or maybe part of your face every now and then. Not worth obliterating your security by using a custom ROM on a phone that doesn't allow bootloader relocking.
1/2
If you want to improve your privacy from these stock apps, you might be able to flash LineageOS. Be warned, though, this will utterly destroy your security. If you want security and privacy, get a Pixel 4a or newer and flash it with GrapheneOS.
Back within the constraints of the stock OS, though, make sure you have revoked all the app's permissions. Try to use an app firewall like NetGuard and block its internet access, too. Its a system app so this may not be effective, but its worth a try.
@ThreeBadgersInATrenchcoat I am using nebulo from frostnerd
@ThreeBadgersInATrenchcoat it is app from fdroid.
Source code : https://github.com/FunkyMuse/Vigilante
@allsyed It probably is and leads you to think otherwise. Fooling you is critical for successful espionage. What OS are you using?