Samsung's Android app-signing key has leaked, is being used to sign malware
![](https://cdn.arstechnica.net/wp-content/uploads/2015/10/android-figure-640x215.jpg)
While downloaded apps have a strict set of permissions and controls, bundled-in Android system apps have access to much more powerful and invasive permissions and aren't subject to the usual Play Store limitations (this is why Facebook always pays to be a bundled app).
Friday, December 2, 2022 at 9:13 pm