You really need to think twice when websites, software, apps, and even browser extensions ask for permissions.
Take a moment to check those permission requests before you hit that approve button.
If a program or extension wants to read your cookies or track your network traffic, don't rush into accepting it. Chill for a sec and ask yourself if the permissions they're asking for really line up with what they say they do.
A lot of extensions and apps ask for more access than they should, and this is how they can sneakily grab your private data. Don't let yourself get tricked by just clicking yes on those requests. Always take your time and read everything before giving any permissions.
Watch out for permission requests
19 replies 275 views
I don't mostly accept to grant for a permission when am not sure of what they are requesting from me, or when it happens that I don't know the aim for that request and it was not initiated by me, we have to be more careful, as to all these things, because they are part of what introduces us to how we got hacked and we pay less attention to threats coming in this manners, we should accept to grant a request not being initiated by us, we should also be careful not the sites we visits, so as not to come across with such prompts or requests.
cryptobridgeSenior Member
Posts: 221 · Reputation: 1481
#3Aug 2, 2019, 04:30 AM
There are plenty of extensions that enable "modify copy and paste" but people don't just care to read about them. I'm not sure if you have seen cases where people complain that they copied an address and when they want to paste the address, the address is different from the one they copied, this is one of the ways some of this extension mass extract funds from people because of this extension and they are not even direct malware download.
If you want to be free from all these, try and get a hardware wallet, an internet connected wallet is full of surprises. You may not install any of this but mistakenly download a fake wallet, with installation and import of seed phrase, everything on your wallet can be empty. Some EVM wallets are very poor in design but the UI might looks good, I kid you not that people prefer a good UI than the best security.
This is a very tricky situation because often these things pop up every time we visit some site and it look like they make the reading so lengthy that they become so boring to go through and we will have no time to read through order than to accept their conditions. Many people have fallen for this trick and lost valuable information and sometimes money. I think we should be able to know the site we are visiting before even visiting them. Knowing the site and also having trust on their reputation is important cos that is the only thing that will guaranty that our data are not used for the wrong reasons.
SilentVectorFull Member
Posts: 50 · Reputation: 362
#5Aug 3, 2019, 05:13 PM
Some of the applications or websites that have asked for permission to access some data, I have discovered that they send information to other applications or apps, recently I went to a friend's place and we had to use his Facebook marketplace to get something, where surfing the settings we found out that all the websites that he has visited last has sent his information to Facebook including his location and other websites that he probably will visit again. this got to me that people having much information that they claim to be accessing. Hence it's vital to reconsider websites you will grant permission to, so you don't regret it.
nonce_2009Member
Posts: 46 · Reputation: 209
#6Aug 3, 2019, 08:21 PM
For sure it is mostly dangerous most of the time especially if the application or page is asking you for a permission and most of the time that is where a lot of suspicious activity is going to happened since hackers could easily trick you if you are not careful with this kind of things, accepting this kind of permissions if going to be easily put your device at risk so its just going to be better to avoid it. The best thing to practice is to always think of how things is going to work, you are surely going to fall unto the trap if you are not careful, but I think it is worth-it investment overall.
I mean it could be really scary facing a lot of hats, it is surely suspicious if im going to just let him the gift, Personally I always do the trick, you just need to think twice most of the time before even clicking, when I see something and it needed information, the best way to do is try to recover it. I always assume that someone is out there going to work to hack your account, so think first if the permission is safe or not. Unless you are the one that is requesting avoid the permission tab and it is still going to work.
the_oracl3Member
Posts: 65 · Reputation: 212
#7Aug 4, 2019, 01:44 AM
It is really tricky situation and I don't really give access or permission unless I am the one who start it and I know the site is legit but if it is not legit site then I wouldn't even give permission easily. It's better to not do many of those things if you don't want to give permissions to those apps, extension and more unless it is really needed for you to do it. As others have said that it is better to use hardware wallet because you know that it is legit and not like those apps and extensions.
raven_maxiSenior Member
Posts: 196 · Reputation: 1240
#8Aug 4, 2019, 07:49 AM
When ever I see grant permission I instantly reject it, I don't even go to streaming sites because of the fears of getting bugged or making any mistake I will regret.
Recently the bank app in my phone asked for some certain permission that they just brought up I instantly rejected it and it cost me the bank app because for reasons best known to them I can't make use of the bank app anymore.
I am prepaid to pay any price from my own safety.
LuckyOmegaFull Member
Posts: 53 · Reputation: 263
#9Aug 4, 2019, 11:42 AM
I have always tried to limit the number of apps I'm using, that's why I now have two devices. One with everything, for daily drive and another for financial use. It's safer that way imo. As for asking excessive permissions, that's always been a red flag for mr, for something is likely wrong. Recently an incident happened with one of the MFS app named Nagad, where it got flagged by google play store, and the reasons was it was asking for permissions like (camera, gallery, microphone, SMS, call logs, contacts, location), I believe some of these permissions aren't necessarily required for the app to function it's normal features, but it asked anyway. This behavior prompted me to uninstall it immediately. Even there was one time, an app asked for root(superuser) permission (something that normal users don't have). My point is, limit your apps uses, always check what kind of permissions they requires, and accept only when it's absolutely necessary.
For a long time, I stopped granting apps and extensions access to my phone details because I personally have noted something about these apps. I observed that whenever i discuss something for example, if i talk to some one about fashion, I will begin to see things related to the fashion aspect I discussed with the person even when I used seaerch engine too I noticed similar things whenever an advert pops up on my phine and I became sceptical about it till it moved me to call a friend who is a software developer and he told me to not grant apps access to my phone otherwise they could use it to steal information from me and since then I stoped granting apps permission on my phone. Ever since then, I stopped it, and I do not need anybody to make such a mistake, so I tell people whenever they download an app, they should disable the permission they grant to apps on their phone, so that their privacy will be protected.
If I have the alternative chioce I will not agree to allow website access to my cookies and unless I have no other choice I likely may avoid using the website regardless of the services their offer at the end.
Some apps even go as far as collecting datas that you type on your key board this is going to be a bigger risks to your usernames and passwords with other sensitive infos.
Personal guidance and avoidance to allow such access is what will keep you at safety most of the time.
dave.falconFull Member
Posts: 163 · Reputation: 447
#12Aug 8, 2019, 10:27 AM
In general, many types of attacks on users are indirect, meaning attackers attempt to trick potential victims into granting permissions first. If someone is careless, and then allows it, then the door to hacking is opened, leading to cyberattacks. Therefore, we should not be careless in granting permissions to anything; we should be careful and verify the source reliability.
Personally, I often encounter sites infiltrated with adware that direct me to download exe formatted applications from unknown sources, and I am also frequently directed to the installation of apk formatted applications from unknown sources. If I were a careless person, or easily lured into traps, I would have fallen victim. Fortunately, I am not reckless in my internet and cyber activities, so I have been safe so far, and I hope to remain so. I hope all of you remain vigilant in your every activity, don't be easily tempted by promises, and don't easily allow access to your devices, whether software or hardware. Always be skeptical of any information you receive.
It's simple, separate your everyday phone from your crypto related phone. So, even if you accept all cookies and grant all permissions, you actually have nothing to lose. But if you are unable to separate your personal phone and your crypto related phone or devices as the case may be, you could make mistakes.
It is true that some apps acquire ask for more permissions that they actually needed to run. Let's be guided.
But it is really funny how most of the websites now asks for permissions before they've an grant you access to use them though. What do they plan to achieve with all of those permissions and all.? Most of the times you cannot even differentiate between the scam websites and the non scams as they are all similar with their instructions and all. For me most times when I comes across those permission granting options I just exit and use other browsers to see if I can get access to the information I need without all of those processes.
This is one of those things people ignore until something goes wrong, extensions asking for full access to sites or cookies is way too common now, most of the time users dont even need half of those permissions, once you approve it, youre basically trusting them with your data, and in crypto that can end very badly.
I think there is a line between giving permission on something for example google, you have to allow permissions so you have to be very careful on what you do, most application ask for grants, the question here is do you know what you are giving permissions, if this were for daily use, its okay, but if this is pertaining to giving permission to apps because there is a bounty or reward, that's when you have to be very careful, and i think that's that one we have to think about.
vault_alphaHero Member
Posts: 363 · Reputation: 2228
#17Aug 10, 2019, 03:50 PM
I still decline most of those permissions because they mostly ask for too much access, in my assessment. Even if the access they demanded is still inline with what they offer, one should still think it twice if accepting it would not compromise the gadget. This has deprived me of many software and apps benefits. But I don't care, security comes first.
basedcobraMember
Posts: 38 · Reputation: 180
#18Aug 10, 2019, 09:05 PM
Some of us dont usually pay attention to what they are granting permission for, they do just accept to grant the permission just because they are eager to access the website to avoid traffic which is very wrong. You cant risk your privacy for all websites that you dont even know what they are doing, and because you dont read or know the terms and conditions behind the permission it is risky because you just give them access to your information and if they side it anyhow or steal your data, you will have yourself to blame because you granted the permission yourself.
Therefore, lets be very careful because we can infect our devices with virus, malware attacks and so on through such permission. Since you will not be ask to leave the website if you failed to grant the permission, then do reject it always unless if you really want to.
If you face such a situation, you must be extremely careful. Some apps and extensions try to steal information secretly and some can steal your information or data by asking for permission. If I get such a notification, I try to review it carefully and accept it. Most of the time, it is seen that the risk is greater in the case of free apps or extensions. That is why free products should be avoided if needed. Again, a common mistake that many people make is that they accept the request immediately without any review and later suffer losses. A user must remember that you need to know well about the apps or extensions you are using, only then can you accept or reject it.
This kind of trick is the most powerful weapon to trap the victim, when someone feels too tired to read, that's when they start to fall into the trap. This is where the level of online security awareness needs to be increased to protect personal data and information from security threats. Some extensions and software often ask for more than they claim, this kind of trick can be a threat to data and information security, so it is better to spend a little time reading them to convince yourself that the access they are asking for is really what the software or extension claims.
Maybe this tip is a little useful to avoid being fooled by access approval.
Never feel bored to read (even if they make for very long reading) to understand the permission request before agreeing to it. Don't rush to agree to permission requests, it's better to consider it first and ask yourself whether the requested access really matches what is claimed and lastly never agree to anything if you are not completely sure about the permission request.
?Reply
Sign in to reply to this topic