SafetyNet attestation in Telegram for Android

Beta version of Telegram for Android has begun performing a SafetyNet check before sending out the SMS authorization code. This was discovered by developers of the unofficial Nekogram modification.

Telegram Info found out custom ROM users don't need to worry.

SafetyNet API, developed by Google, is a tool that app developers can use to detect unofficial modifications within the app and on the system, such as mods, root access, and custom ROMs. This technology is used to protect against piracy and improve security by blocking the app or certain features on devices deemed unreliable by the developer.

Some users have expressed concern that Telegram's implementation of SafetyNet may indicate that the app will no longer allow SMS codes to be received from devices with unofficial ROMs or that the app will cease to function on these devices altogether.

However, a deeper analysis of the app's code reveals that Telegram is using SafetyNet to test a new method of delivering SMS authorization codes via Google's Firebase service, which requires the device attestation. The old method of sending codes will still be used in other cases, leading to the conclusion that Telegram does not intend to impose any sanctions on users of unofficial apps or mods.

The use of Firebase may be related to the high cost of sending SMS messages and calls for authentication. The delivery of codes accounts for a quarter of the messenger's expenses.

#Android

Heck, I forgot to mention the phone, obviously:
https://m.gsmarena.com/quick_camera_comparison__galaxy_s23_ultra_vs_galaxy_s22_ultra-news-57427.php

Samsung is expectedly non-compliant on S23 Ultra

https://www.xda-developers.com/poco-x5-series-launch/

A release of sm6375 and sm7325 device in February 2023.
If Google won't bend the GRF rules, these devices will only get one system update (UPDATE: or two, because they supposedly start with Android 12 as per @kacskrz). Aside from this fact alone, it's quite impressive that the VNDK these phones are running is two whole versions behind sm8550. I don't think a VNDK gap this big happened on freshly released devices very often in pre-GRF days.
Looks like Qualcomm really priced their S and T vendor SoCs too high.

Further cost cuts confirmed, third party clients won't be able to make Telegram send an SMS to you. You'll need an already logged in device to receive the OTP in Telegram service message if you want to add a session of a third party client.
https://news.1rj.ru/str/NekoUpdates/363

⚠️ Beware of seismic activity ⚠️
https://9to5mac.com/2023/02/16/exclusive-this-is-iphone-15-pro-thinner-bezels-thicker-curve-design-no-lightning-port-more/

The JUST DON'T LOGIN TO GOOGLE ACCOUNT FOR YOUR ENTIRE SYSTEM OR BROWSER thread:
https://twitter.com/MishaalRahman/status/1629315374679306240

Pricing of all the products that were launched today by Xiaomi.

Xiaomi 13 Series
Xiaomi 13 lite:€499
Xiaomi 13:€999
Xiaomi 13 Pro:€1299

Xiaomi Buds Pro:€249

Xiaomi Watch S1 Pro:€299

Xiaomi Electric Scooter 4 Ultra:€99

@EqualLeaks | @LaptopInsider | @EqualLibrary | @AutosInfo | @EqualWall | @EqualFacts

Welcome to Xiaomi officially costlier than Samsung

Do you happen to feel out-of-date with Android modding at times? It happens to me quite often, and until recently, the two topics I really wanted to tackle were SafetyNet and microG. Guidance on the internet can often be unclear due to changes between Android versions, ROMs and Google's backend, so it feels quite awesome to have a working setup. The short guide I wrote very likely applies to your own device too, but make sure to have signature spoofing support in your ROM.

Noteworthy fact and something unexpected from Xiaomi: you only gotta pay just 600 CNY (a bit under 100$!) to move from 8/256GB config to 16GB/1TB one. I believe that demand for high storage configurations could be artificially low due to typically high margins set by the phone OEMs on any non-basic and especially highest configurations.

https://blog.mollywhite.net/is-acceptably-non-dystopian-self-sovereign-identity-even-possible/

As Worldcoin is kinda trending again (and offered as a solution to high quality AI spam), here's a very relevant post regarding it.

News are saying that supposedly Gen Z is into feature phones now to limit their screen time. I won't elongate this message, but it's worth remembering that with a feature phone, the security risks of ancient devices and obvious/less obvious schemes of monetizing the user on newer feature phones are a real thing (including outright malware lending your phone number on sketchy brands). The latter may additionally get you poor build quality and software that runs slower than you'd expect.

Buy a first gen iPhone SE. It'll probably keep getting patches for zero click exploits once in a while, while the form factor was already insufficient to consider it a full fledged smartphone at the moment of release. :)

Additionally, you'll probably never run out of replacement parts for this phone. Apple is an ecological choice not really because of their own will, but because of the humongous volume of the few models they sell. For a third party component maker, making parts for an iPhone is an obvious choice, as long as they're not DRM-ed to extreme levels.