Facebook’s Android App customers freak out because the app is asking for ‘superuser’ privileges
Users of the official Facebook Android app are being requested one thing uncommon from May 17th. The app is asking for “Superuser” permissions to the customers’ telephones. In different phrases, the official Facebook Android app is asking the customers to grant the app full entry to their units “forever”. This pop-up request has created a whole lot of unrest among the many customers.
Apparently, for the previous couple of days, Facebook’s Android app (com.fb.katana) has been asking for superuser entry to customers’ units. However, if a consumer tries to disclaim this request, it nonetheless continues asking till the consumer grants permission. This has led to panic amongst customers who took to numerous web boards in search of a proof for the suspicious pop-ups.
“Today I was browsing Facebook when suddenly I got a superuser request popup,” one consumer wrote on XDA developer boards. “Could anyone explain why Facebook needs SU permissions?”
Another consumer commented, “Same happened to me too. Started yesterday afternoon. Facebook last updated 1 day ago, so it must have to do something with new version.”
Also, customers from France, Australia, and the UK confirmed in the identical thread that they too obtained the identical pop-up from Facebook to grant root entry.
Same right here. I denied it, stored getting toast messages that entry was denied, even after closing the app. What provides, @facebook? This is shady as hell!
— Jasper Roos (@JasperRoos) May 17, 2018
Several Android safety researchers who spoke with Bleeping Computer imagine that the pop-ups are showing due to a coding error.
Avast cell safety researcher Nikolaos Chrysaidos who took a take a look at the Facebook’s app supply code instructed Bleeping Computer that it may likely be a coding error. WhiteOps SDK, used for detecting advert fraud, is alleged to be the rationale behind this Superuser permission.
He stated, “The dialog started popping up on users that are in the beta channel. Along with other various checks. Facebook is probably integrating WhiteOps SDK, and they forgot to re-implement the ROOT checking functionality.”
When Facebook was contacted for a clarification on the scenario, a spokesperson confirmed the pop-up dialog was brought on by a ‘coding error’. According to the corporate’s official assertion, the pop-up was solely been seen by individuals who used rooted units, and that too, solely beneath sure circumstances. However, the corporate has mounted the issue with a brand new replace.
“A coding error in one of our anti-fraud systems caused a small number of people running the Facebook app and certain permission management apps on rooted Android phones to see a request for additional access permissions. We do not need or want these permissions, and we have already fixed this issue. We apologize for any confusion.”
Since the difficulty has been mounted, all these customers who had been perturbed by the pop-ups can now breathe sigh of reduction. With Facebook already going through criticism over its knowledge and privateness insurance policies on account of Cambridge Analytica scandal, the “Superuser” permission problem has not solely come on the incorrect time for the social media large but it surely has additionally added extra gas to the hearth.