Category: Android

Categories
Blog Android Security

2025-08-19: Android System SafetyCore: For Your Safety?

I recently heard in one of my tech groups on the Matrix network about a new app suddenly appearing on many Android devices: Android System SafetyCore. ?
At first, there was a lot of confusion – some suspected malware, others thought it was a buggy update. But it quickly became clear: this isn’t some shady download, but rather an official Google system app silently installed on devices without any visible announcement.

And that’s where the problem begins: when a company like Google rolls out background features that deeply integrate into the system, the question inevitably arises – is this really about safety, or also about control?

What does the app actually do?

SafetyCore is an invisible system service, embedded deeply within Android. It acts as infrastructure for on-device machine learning. According to Google, the app is initially being used in Google Messages – where it automatically detects images that may contain sensitive content such as nudity.

Here’s how it works:

  • If you receive an image with possible “sensitive content,” it’s first blurred.
  • A warning ? appears with information and support resources.
  • You then decide whether to view the image or block it.
  • The same applies when sending images – if nudity is detected, you’ll be warned before sending.

Google stresses that this analysis happens only on your device (on-device), and images are not uploaded to servers. Technically, SafetyCore provides the recognition modules that apps like Messages can call upon.

Planned future functions include:

  • Detecting dangerous links in chats
  • Blocking messages from unknown international senders
  • Classifying content as spam, fraud, or malware
Why I find this problematic ⚠️
  1. Installed without consent
    SafetyCore was rolled out automatically, with no prior request or notification.
  2. Lack of transparency
    Google only mentioned the app in a blog post. Most users discovered it when digging through their system app list.
  3. Potential for abuse
    Even if Google currently claims no data is sent to servers, the technical groundwork is there. This could change in the future.
  4. Undermining end-to-end encryption
    In theory, apps like SafetyCore can weaken the concept of end-to-end encryption. Why? Because content is scanned before it is encrypted and sent. The encryption remains intact, but if messages or images are analyzed on the device prior to encryption, the real protective value is compromised.
  5. Erosion of personal freedom
    My phone belongs to me. I shouldn’t be forced to accept hidden apps that inspect my content – even if they are supposedly “for my protection.”
  6. Privacy law concerns
    Under European GDPR rules, installing apps that process sensitive data without clear consent is questionable at best.
What the community says

The reactions are divided:

  • Some see SafetyCore as a useful tool to fight scams and unwanted content.
  • Others compare it to spyware, since it installs silently and integrates deep into the system.
  • Most interestingly, GrapheneOS – an alternative Android system for Google Pixel devices focused on security and privacy (see this blog post) – does not install SafetyCore at all. Its developers emphasize that SafetyCore is designed for classification tasks (spam, malware, phishing) but not for reporting illegal content. They stress that making such a distinction is crucial to protect privacy and prevent false positives.
What you can do ?️
  • Locate the app: Settings → Apps → Show all apps → Three-dot menu → Show system apps → search “SafetyCore”
  • Disable it: In many cases, you can at least disable the app or remove updates.
  • Stay alert: SafetyCore can reappear with future updates.
Conclusion ✍️

I believe security is important – but not at the cost of freedom and privacy.
SafetyCore might be well-intentioned, but its silent rollout breeds mistrust.

While systems like GrapheneOS deliberately avoid hidden installations and give users full control, Google silently installs an app that inspects your content – no matter how “local” the analysis may be.

Even more worrying is the fact that such a system can effectively weaken end-to-end encryption: if content is analyzed before encryption, the core principle of secure private communication is undermined.

Your smartphone should remain your space of self-determination – not a black box where hidden functions run without your knowledge or consent.

Categories
Blog Android Messenger OpenSource Security Server

2025-08-17: Molly – Your Privacy-Focused Alternative to Signal

As an IT consultant, I see every day how important secure and private messaging is. Signal does a great job and is rightly considered one of the most secure messengers ✅ – but Molly puts even more emphasis on privacy and control.

What’s especially interesting: On GrapheneOS, Molly is available by default, as it is recommended there as a trusted messenger. But you can also use Molly on any other Android system by simply installing the APK manually.

Why Molly?

Molly is based on the Signal protocol but adds additional security features such as encryption at rest (encrypting locally stored data).

Other advantages include:

  • Open-Source – transparent and verifiable.
  • More control – option to use your own push infrastructure.
  • Optimized for privacy – especially in combination with GrapheneOS.

For a deeper look at GrapheneOS, check this out:
GrapheneOS – More Security, Less Google: How to Make Your Smartphone Truly Private

Download the Latest Version

The latest release is v7.49.1-1.
Please note:

  • The APK is only for Android devices.
  • It must be installed manually ⚙️, since it is not available in the Play Store.

Download Molly APK v7.49.1-1 ⬇️

Setup with My Molly-Socket Server

To make Molly even more privacy-friendly, you can connect it to my own Molly-Socket server:

https://molly.it-service-commander.de

Here’s how:

  1. Open the app.
  2. Go to Settings → Notifications → Push Notifications.
  3. Select “Unified Push” ? as the push service.
  4. Scan the QR code from my website.

This way, your push notifications don’t run through third-party servers but through your own infrastructure ?️ – a clear advantage for privacy.

Conclusion

Signal is already excellent ✅ – but Molly is the even more privacy-focused choice. On GrapheneOS, Molly comes preinstalled, and on any other Android system it can easily be installed manually.

I personally use Molly every day – not just as a messenger, but as part of a holistic privacy strategy.

Categories
Blog Android Anonymity Blackout Messenger Security

2025-08-02: BitChat – Emergency Communication in a Blackout

In a crisis, every message counts. When mobile networks, the internet, or centralized services go down, you still need a way to stay in touch with people nearby. BitChat, created by Jack Dorsey, was designed exactly for that: an app that works without the internet and sends messages directly from one device to another.

What is BitChat?

BitChat is a messenger that does not require any account, phone number, or Wi-Fi. The app connects via Bluetooth to other devices in the area and passes messages along – like a relay baton being handed from one person to the next. This way, you can communicate even when traditional networks fail.

Why this app is so useful in emergencies ?
  • Works without infrastructure: Even if the mobile network goes down, you can send encrypted messages to people within range. This can be a lifesaver during natural disasters, power outages, or in restricted areas.
  • Quick to start: No registration, no passwords. Open the app, choose a display name, and start messaging – ideal when every second matters. ⏱️✅
  • Private & secure: Messages are encrypted, there’s no central data storage, and you don’t need to share personal information. You stay anonymous and protected.
  • Emergency wipe: With a quick action, you can instantly remove all local chat data – useful if you need to erase traces quickly.
  • Extended reach through relaying: Even if two people are not directly connected, messages “hop” through other users. This increases the effective range without the internet.
Things to keep in mind ⚠️
  • Dependent on other users: For messages to be forwarded, there need to be other people nearby with the BitChat app running. In very remote areas, this can be less reliable.
  • Limited single-hop range: Bluetooth has a physical range limit; multiple hops make up for that, but movement and low user density can affect connectivity.
  • Beta / Availability: The app is still new – especially on Apple devices – and some versions may still be in an early stage.
Where to get BitChat
  • For iOS / Apple devices: Download BitChat Mesh directly from the App Store. It works with iPhone (iOS 16+), iPad, Mac (M1+), and even Apple Vision Pro.
  • For Android: The Android version is available on GitHub. You can find the latest installation file (APK) here:
    https://github.com/permissionlesstech/bitchat-android/releases
Conclusion

BitChat is not a replacement for your regular communication channels, but it is a valuable and robust backup tool for emergency situations. Its offline capabilities, ease of use, privacy features, and quick data-wipe option make it a tool you can rely on when normal networks fail.

Recommended steps for your emergency setup:

  • Install and test BitChat ✔️
  • Keep Bluetooth enabled ✔️
  • Set a display name ✔️
  • Try out the emergency data wipe ✔️
  • Brief your colleagues or team ✔️

More information here:
https://bitchat.free/

Categories
Blog Android Anonymity OpenSource Security Smartphone

2025-07-23: GrapheneOS: More Security, Less Google – How to Take Back Control of Your Smartphone

In a world where smartphones have become constant companions — and often know more about us than we’d like — a fair question arises:
How can I use my phone without constantly sharing data with Google and others?

One convincing answer: GrapheneOS.
An alternative Android operating system focused entirely on security, privacy, and user control. In this post, I’ll walk you through what GrapheneOS offers, its pros and cons, and how it can help you reclaim your digital freedom — without giving up too much functionality.

Learn more on the official website: https://grapheneos.org

What Is GrapheneOS?

GrapheneOS is an independent, open-source operating system based on the Android Open Source Project (AOSP), designed with one clear goal: to make smartphones more secure and privacy-respecting.

Unlike standard Android builds, it comes without any pre-installed Google services, and instead adds a wide range of security improvements at the system level — all while remaining fully compatible with Android apps.

GrapheneOS is ideal for users who are tech-savvy or deeply privacy-conscious — journalists, business owners, developers, or just private individuals who want more control.

How Does GrapheneOS Help You De-Google Your Life?

✔️ No Built-in Google Services

GrapheneOS includes no Google Play Services, no Google account requirement, and no background communication with Google servers. You’re in full control of what your device does.

✔️ Optional, Sandboxed Google Play

If you need specific apps that depend on Google services, you can install them manually in an isolated sandbox. They behave like regular third-party apps and don’t have privileged access to the system.

✔️ Fine-Grained Permission Management

GrapheneOS gives you detailed control over permissions. You can restrict access to network, sensors, camera, or microphone — even based on whether the screen is locked.

✅ Advantages of GrapheneOS

  • Top-Tier Security Architecture
    Hardened kernel, exploit mitigations, secure boot, and memory safety features like MTE.
  • Strong App Sandboxing
    Apps run in isolated environments to reduce risk and prevent cross-app interference.
  • Fast and Frequent Updates
    Security patches are rolled out promptly — often faster than official Android builds.
  • Fully Open Source and Transparent
    Every line of code is auditable. No hidden processes, no surprises.
  • ⚙️ User-Centric Design
    You decide what runs on your phone. No bloatware or forced services.
  • Minimalist, Privacy-Friendly Apps
    Includes a secure browser (Vanadium), open-source PDF reader, camera app, and verification tools.

⚠️ Possible Drawbacks

  • Limited Device Support
    Currently, GrapheneOS is officially supported only on Google Pixel devices (6 and newer). Devices from other manufacturers are not compatible.
  • Requires Some Technical Knowledge
    Installing GrapheneOS means unlocking the bootloader and flashing the system using a computer. It’s well documented, but not beginner-level.
  • App Compatibility Can Vary
    Some apps — especially in banking or streaming — depend on Google Play Services and might not work as expected (or at all) without sandboxed support.
  • Learning Curve for New Users
    If you’re used to heavily customized Android skins (like Samsung One UI) or iOS, it may take time to adjust to GrapheneOS’s minimalist and security-focused environment.
  • No Pre-Installed Extras
    GrapheneOS keeps things lean. Common apps like calendar, gallery, or email clients need to be installed manually from trusted sources.

✔️ Supported Devices (as of July 2025)

GrapheneOS officially supports the following devices:

  • Google Pixel 9 / 9 Pro / 9 Pro XL / 9 Pro Fold / 9a
  • Google Pixel 8 / 8 Pro / 8a
  • Google Pixel 7 / 7 Pro / 7a
  • Google Pixel 6 / 6a
  • Google Pixel Fold
  • Google Pixel Tablet

If you already own one of these or plan to get one — you’re ready to go.

Conclusion

GrapheneOS is a powerful operating system for anyone who takes privacy and security seriously. It combines advanced protections with compatibility for most Android apps — and it does so without tying you to Google or other third parties.

Yes, it takes a bit more effort to install and get used to. But if digital independence is important to you, the benefits clearly outweigh the challenges.

Need Help Getting Started? I’ve Got You Covered.

As an IT service provider, I offer the following:

  • Support with installing and configuring GrapheneOS on your Pixel device
  • Consultation on app compatibility and secure usage
  • Pre-configured devices with GrapheneOS – fully set up and ready to use

If you’re considering switching to a more secure and private smartphone experience, feel free to get in touch. I’d be happy to assist — whether you already own a Pixel or want to purchase one that’s ready to use.

Real digital privacy starts with taking control of your own device.
Let’s make that happen — together.