Originally I’ve download the signal app through playstore, but often it also get updates from Droid-ify(Fdroid client). Today its weird and I got this . Explain to me this.

On the Droid-ify the signal app is provided by: org.thoughtcrimes.securesms

  • Nia@beehaw.org
    link
    fedilink
    arrow-up
    17
    ·
    edit-2
    1 year ago

    Droid-ify is an F-droid frontend, that is also in F-droids repo as an installable app so it’s safe, in this case one of the F-droid repos OP has is actually malicious and is installing a modified version of Signal, the package name is wrong org.thoughtcrimes.securesms, it should be thoughtcrime without the S.

    I think Play Protect is intrusive, but this time it actually tried to protect OP from a malicious Signal clone.