search

daniel-beckham / nasa-imagery-fetcher

Android app that fetches images from NASA's Image of the Day and Astronomy Picture of the Day services
Apache License 2.0
16 stars 4 forks source link

Trojan detected #4

Closed Falxin closed 4 years ago

Falxin commented 4 years ago

It's a trojan. IMG_20200817_173913

daniel-beckham commented 4 years ago

That's a false positive.

luisvalenzuelar commented 3 years ago

Hi Daniel. I really like the app (found on F-Droid), but this message worried me. Being lover of open source, there is the risk of malware. How can people be sure this is truly a false positive? I did a run at VirusTotal and seems safe but I am noob enough not to know.

daniel-beckham commented 3 years ago

I would not worry about it. Most virus scanners rely on heuristics to look for patterns that might resemble suspicious behavior. This just means that some part of the app appears to be similar enough to some other app that's been identified as malicious. The malicious app, for example, might be stealing your information and transmitting it to a third party, while an app such as this one could be simply downloading images onto your device from an external website. Both apps are accessing the Internet, but they're actually doing totally different things.

Everything is open source here, so anyone can review it if they'd like, and F-Droid builds directly from the source. You're safe.