qksms icon indicating copy to clipboard operation
qksms copied to clipboard

Published 20 hours ago verified publisher icon moezbhatti

Option to not open links contained inside SMS to avoid phishing

Open AnthillSudoku opened this issue 1 year ago • 5 comments

description

It would be useful to have an option that do not allow the user to open a link contained in the text of an SMS. Nowadays, most of them are phishing that try to steal the user's data, like bank accounts.

Honestly, I would also make it default to be on the safe side.

The only downside I am aware is that SMS link sent by search and rescue team to enable location finding will not immediately work, since you will have to copy and paste it.

alternative

If disabling it is not an option, please consider to have a clear warning when opening a link

example of phishing received by SMS

the url has already been reported and blocked

phishing

AnthillSudoku avatar Apr 13 '23 19:04 AnthillSudoku

Hi, I agry with this idea. Maybe let the link from a known number be clickable.

If the number is already in the contact list or if I already send a message to this number for example.

87113 avatar Apr 13 '23 19:04 87113

How about you don't open unsafe links from unknown phone numbers?

Lots of apps contain links. It's the user's responsibility to decide what to open. It's unreasonable to expect every app to disable an extremely basic, common, useful function like hyperlinks (let alone to disable it by default) just so careless users don't open them unthinkingly.

e-t-l avatar Apr 24 '23 14:04 e-t-l

in 2016 the same feature request was turned down - https://github.com/moezbhatti/qksms/issues/522#issuecomment-230193231

it's a good idea still, but you never know the demand - the url opening could be handled by a helper app - https://f-droid.org/packages/com.trianguloy.urlchecker/

tcecyk avatar Jul 07 '23 02:07 tcecyk

Today news

https://www.ilfattoquotidiano.it/2024/02/10/risponde-a-falso-sms-della-banca-e-perde-240mila-euro-18-indagati-per-truffa-aggravata/7441819

So,

  1. allowing only contacts is not an option for everyone, due to spoofing
  2. Not every user is so wise to not open links they do not known, regardless of their age. Especially if the link is close to its original.
  3. Maybe few people care for this feature, but risk exists and can be devastating

A clear warning does not harm anyone, and also having this as an option

AnthillSudoku avatar Feb 12 '24 09:02 AnthillSudoku

Ok. But this project is abandoned. No one is updating the code anymore, haven't you noticed? So unless you want to fork the repo and code it yourself, it's not going to happen.

A quick Google search turned up UntrackMe (https://f-droid.org/repo/app.fedilab.nitterizeme_33.apk) as an app that should accomplish exactly what you want.

e-t-l avatar Feb 12 '24 13:02 e-t-l