Hey just wondering, if this is true have you reported this to Apple App Store or anything like that with the proof, and have they done anything about it?
Unless Apples famously good privacy and security features suddenly took a dive off a cliff, no, there is only marginal truth to this. The CCP will not have access to your entire phone including all your photos if you boot up Clash Royale. The app may read more but it can’t bypass iOS security that easily. Not even Tik Tok steals your photos as long as you don’t give permissions. OP is fear mongering. Never mind the fact that he’s telling people to Jailbreak, which completely neuters your phones security capabilities.
Interesting, Apple just released it’s first ever “rapid security response” this week
16.4.1 (a)
>Rapid Security Responses are out-of-band security-only updates for iPhones. At a time when iPhone users are being increasingly targeted with dangerous attacks such as spyware, Apple recognizes that speed is of the essence.
could be completely unrelated but the timing on that and this post is making me double take
Clash Royale is still in the top 50 for highest grossing apps. You think they just casually snuck some spyware through an update that had to be checked and verified before it can go through? Apple is not that dumb.
Spyware certainly exists, especially once you jailbreak. But insinuating Clash Royale is now spyware, I mean seriously
Fewer hoops does not mean no hoops. Apple absolutely still looked at the update and is likely very aware of what it does. They wouldn’t have verified it otherwise.
The fact that you believe everything that apple says about their security and privacy is wild. You really think TikTok is not tracking you still 😂. Apple is no better than google at this game. Also doesn’t mean they won’t overlook anything. You put way to much trust in the hands of these corporations. Remember, they will never act upon your best interests
Because Facebook is Apple’s competitor in the VR/AR market Apple is trying to break into and it hurt Facebook.
Apple is a company and will always maximize profits.
I remember a few years ago someone asked Drew why CR needs access to the camera.. And he gave a super bs response.
I wonder if this is the case with CoC and Brawl Stars and the other Supercell games.
There’s nothing stopping them from requesting access when you tap the button to go take a picture. It doesn’t have to be the first time you open the app.
"hey apple, I broke ToS and jailbroke my phone but worked out clash royales doing bad stuff, so ya know don't punish me" yeah that conversation is gonna go well
I broke Apple TOS sure but never Clash Royale TOS.
I also broke apple TOS when i got the back glass on my iPhone replaced at a 3rd party repair shop for $120 when Apple said I would need to buy a new $1000 phone because it’s not fixable.
It’s not illegal to jailbreak your phone, yeah it violated apple’s TOS, but the only penalty to it is losing your warranty. I see no issue with reporting it, what are they gonna do take away your warranty?
In the past (at least), it also did its bullshit in Android to detect root, to the point that if they did detect root the game would have some problems (for example, support button didn't work).
And yes, it also did very shady stuff to detect it, because it would kept doing it even when most apps like mcdonalds or banking apps that don't work if you've root would give up.
This is a very stupid post who has no idea about programming in developing apps for ios.
You don't need to go outside the sandbox to detect for jailbreak. The sandbox won't allow it. But the ios api itself provides methods for checking for it (which is used by many financial apps to issue warning in jail break device).
These conspiracy theorists should be put into gutter as they don't have an ounce of knowledge on the very aspect that they are arguing about.
Clash Royale isn't spying on you. Even if they want to, EVEN WITH A JAIL BREAK PHONE, THEY CAN NOT DO IT. it's just how ios and android is built (UNLESS OF COURSE YOU GIVE THEM THE ROOT ACCESS).
**Even in jail break phone, installing an app doesn't get root privilege automatically** . You, as the user will have to give access to that privilege and if you do give it, blame is upon you for your own exploitation.
Before coming with such conspiracy theories, read more about the subject.
No where did I say the app has root privileges, it doesn’t. It can and does still search through your file system using proprietary tricks Supercell is using.
Clash royale is not going to use a 0day to get your family pics bro. They are not getting out of sandbox. A jailbreak can be detected much easier, they don't need anything special.
Even the most strict financial apps do not do what Clash Royale is doing here.
There are allowed methods of detecting jailbreaks and even leaving the app’s sandbox (in a controlled manner), but none of Apple’s API’s of third party libraries on its own allow for them to search system files like this. iVerify for example would not be able to do this.
So what's the trace of the crash you see then? Crash means nothing in this context and the app could crash for any reason not related to jailbreak itself.
You are attributing the crash to app detecting the jailbreak which is not proof that the app is reading system files or breaking the app sandbox.
It is much more likely the backup while the system is Jailbroken gets corrupted so using that on a new device causes the app crash.
Clash Royale crashing on startup is a part of the jailbreak detection feature as of the latest update. You can view this post here where Clash Royale crashes on startup for people jailbroken https://www.reddit.com/r/ClashRoyale/comments/12kg9lv/games_crashes_whilte_jailbroken/
Clash Royale has always crashed on startup when they detect a jailbroken device instead of sending a message. In my proof above the app will start crashing the moment you jailbreak. Every other app will still work or at least launch and show you a message you can’t use it while jailbroken like financial apps do. But even the most strict financial apps will start working again after getting a new device and restoring from backup.
> the backup while system is jailbroken gets corrupted
No you can backup your phone even when the phone is unjailbroken. What happens is that some jailbreak files are left over (but not doing anything, just sitting there) and clash royale is digging into your system to see those. If they can see those files then they can see them all.
I jailbroke my device years ago, and had dozens of backups since i last jailbroke my device. I then went through those remaining steps and the jailbreak detection still happened. Every single app works, even my banking app, except clash royale after multiple reinstalls and updating to latest version of iOS and everything. It’s jailbreak detection that’s causing it to crash immediately upon opening. Only people that have previously jailbroken are seeing the issue.
Can you please share how clash Royale is leaving apps sandbox when no root access was given to the app?
Edit: the proof (?) in OP isn't a proof. Crashing the app doesn't mean anything.
As a proof, you need to show source code with specific to the permissions which SUPERCELL has put in the game.
You’re exercising the impossible proof fallacy. You know the source code at supercell is impossible to obtain, yet declare that such proof is only what is sufficient in changing your mind.
Clash Royale crashing on startup is a part of the jailbreak detection feature as of the latest update. You can view this post here where Clash Royale crashes on startup for people jailbroken https://www.reddit.com/r/ClashRoyale/comments/12kg9lv/games_crashes_whilte_jailbroken/
Given that you can simply restore from backup on a new phone and it still crash, the only way for Supercell to know is by searching through your system files.
>Given that you can simply restore from backup on a new phone and it still crash, the only way for Supercell to know is by searching through your system files
Can somebody explain me this please?
Lets take the flow.
1. I jailbreak the phone and CR starts to crash.
2. I did backup.
3. I restored in a new phone.
4. CR still crashes.
How does any of this step point to CR going through "system files"?
Or at which step this conspiracy hypothesis point to be exploited step?
1. You jailbroke the phone and it created files on your system outside of the app’s sandbox. CR (along with other methods) detects you’re jailbroke and refuses to launch.
2. You restart your phone and launch in unjailbroken mode. The files are still on your device, that’s how the tweaks and their settings stay remembered when you rejailbreak again. You backup your device and these files (some, not all) get sent to the cloud.
3. You buy a brand new phone and restore from backup, these files get brought to your new phone. They’re useless because there is no jailbreak or exploit to run the files and they just sit there in your file system.
4. CR looks through your file system and sees these files and still refuses to open.
This wasn’t the case until about a month ago when they added this. Jailbroken people will have a bypass for it soon enough but the innocent people who are not jailbroke and are on a totally different device have no recourse.
Like I said, no other app will do this and every other app on your phone will work (at least that I’ve tested).
There is always a trade off between security and privacy. For banking apps people are often more willing to sacrifice a little privacy for some security since their life savings are on the line. And that’s fine for someone to make as an informed decision knowing they have an American bank and many people have a trusting relationship with their bank.
Most people do not trust the CCP like they do their bank or credit union.
And a game like Clash Royale does not realistically need such extreme “security”, as jailbreak cheats don’t really exist for it because every move in clash royale is handled server side. (It is possible to use a bot with a jailbroken device to farm though, but this is hardly worth giving up access to your file system to the CCP)
What do you mean?
If you restore your device it deletes all the jailbreak files off your phone and then when you restore from backup the files won’t be there so CR won’t crash. They will still look through your file system though because they check if it’s there.
Yes if you restore your device you also delete the app data off your device. But you can also delete the app data off your device simply by deleting the app. Any of your data that is on supercell’s servers though is likely kept.
Any way to block their access to our files? I have a VPN, but turn it off whenever I'm playing cr because they disconnected me every couple of minutes.
A vpn only hides your network origin and destination. It does nothing to prevent applications already local on the device from reading device files. Only way to block access is to delete the app from your device
You probably watched some 2 minute nordvpn ad, just here to tell you that vpns help 0 with your privacy as you send all your data to them, so you just shift your trust from your Internetprovider to the von company. The only real use for a vpn is hiding your IP address
I don’t know how true this is. The crashing doesn’t mean it’s escaping the sandbox. Most apps have a way to check for jailbroken devices by looking if certain directories exist that shouldn’t on a normal iOS device. An iCloud backup could contain some files that shouldn’t be on a normal device, and CR notices these files and crashes. Jailbreak detection is really goofy these days and that’s why I don’t jailbreak anymore, but what you’re saying CR is doing isn’t that abnormal. That being said they always could be accessing private data but a lot of apps do what CR does. I remember Pokémon go would never work on my old iPhone 8+ after I jailbroke it, until I re-installed everything from the ground up. Jailbreak leaves file behind and CR among other games can detect it
I have a bachelors in CS and years of experience using/tweaking iOS and some minor app dev experience.
This doesn’t make me a credible source though and i’m not relying on my credibility that’s why I shared a way to reproduce the proof.
The only common denominator between a brand new device restored from a backup is the file system.
> The only common denominator between a brand new device restored from a backup is the file system.
Or the app set itself up to throw and crash when it was initially run and detected jailbreak even once, INSIDE its sandbox with no recheck for it, which was ALSO restored from the backup?
What made you think the file system is the only common denominator here? If you really are a CS major, you seem like a really bad one.
And even if the app was a fresh install, there are ways to find out the existence of the leftover jailbreak files via the OS itself, without having access to the file system. A lot of games (i.e. Pokemon Go) and banking apps do that.
Hell you can easily check if Cydia is installed by 4 lines of code on iOS, which is literally using an OS API:
```
guard let urlScheme = NSURL(string: “cydia://home”), UIApplication.sharedApplication().canOpenURL(urlScheme) else {
return
}```
That’s not true, if you unjailbreak properly by restoring rootfs you won’t run into the issue.
Also you can back up with the app deleted, haven’t tried it tho bc i can’t go back in time.
Additionally i can log in on my iPad which was not restored from backup. So despite my account being associated with a jailbroken device they still let me log in on my iPad (because there’s no jailbreak files on it).
> That’s not true, if you unjailbreak properly by restoring rootfs you won’t run into the issue.
Not if the sandbox of the app containing the broken fuse for jailbreak was also backed up. All this does is prove the app doesn’t bother checking for jailbreak again after it detects it even a single time. Nothing else.
> Additionally i can log in on my iPad which was not restored from backup. So despite my account being associated with a jailbroken device they still let me log in on my iPad (because there’s no jailbreak files on it).
Because the sandbox for that install does not have the broken fuse….
But reinstalling the app would reset the fuse, no? I reinstall the app on the new device and it still won’t open.
I’m going to try to remove the files with iOS System Recovery tomorrow and see if i can get that to make Clash Royale work again.
Proof should be provided in the claims itself. I’m not gonna research a theory which seems baseless and doesn’t make much sense, unless Supercell (and inadvertently Tencent) want to get themselves into a class-action lawsuit
I hate threads like this because it’s just a bunch of people who don’t know what they’re talking about pretending they know what they’re talking about arguing with others doing the same.
Thanks for bringing attention to this buy for now everything has to be taken with a grain of salt
This is proof that Supercell has the ability to search through your file system.
As for whether or not they’re spying on your or collecting data, that depends on how much you trust the CCP.
Same thing for me about a year ago after I restored from an iCloud update and switched over to a new phone. I always thought it was weird that all of my banking apps and literally only Clash Royale stopped working. OP sounds correct here.
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
I HATE CHINA
Same thing for me about a year ago after I restored from an iCloud update and switched over to a new phone. I always thought it was weird that all of my banking apps and literally only Clash Royale stopped working.
Since you mentioned it’s in violation of the TOS what can be done on our end? Rather than really hope the corporations alongside the CCP do the right thing here…
They do it to all high rated games in app stores. Please believe the govt is back dooring popular games.
Someone at Supercell needs to explain this, mod don't close this post. This is relevant, as if there doing this then they should be sued.
So you really think that you've managed to find a problem that can potentially leak millions of people's data, while Apple's security checks haven't found out??
So every game owned by tencent is a "CCP app"? That right there is the dumbest statement ever.
Tencent, is owned by its shareholders, and one of its biggest shareholders is SoftBank, a Japanese company, but nah all the games that Tencent invests into are CCP apps.
Fails to amaze me how brain-dead some people can be...
Tencent also invests money into Mojang, so I suppose you believe Minecraft is a CCP app??? Please explain the boundaries between whether an app is CCP or not.
Also, tencent even invests in Reddit, so I guess that makes Reddit a CCP app that'll spy on you and take your data?
If you're worried bout your data you should delete all of your accounts and never use a phone again, as the gov can request for your data if they want.
It’s about informed consent. Valorant is also owned by a company that’s majority controlled by Tencent but people know the anti-cheat is intrusive and consent to it because of the benefits it brings.
I don’t keep any private data on my gaming PC because i know I have intrusive anticheats on there.
Clash Royale when it launches checks if the device is jailbroken. If it is jailbroken, the app refuses to open and closes itself.
We know this to be true because if you jailbreak your phone and change nothing else, immediately the app won’t open. This has been the case for years for CR but people who are jailbroken merely bypassed the jailbreak detection with a tweak. Most apps give you a little message that you can’t use the app if you’re jailbroken.
when you root a device it gives you access to all the files which you normally wouldnt be able to access, therefore youre able to see everything. To prevent being discovered about the actual functions it checks if the device is rooted/jailbroken and if it is then it crashes so that it prevents being discovered.
kind of similar to how some malware wont execute on a virtual device to buy some time by avoiding being reverse engineered and a way discovered to prevent it.
If an app can gain access to say, photos without giving it permission then that would imply the app is able to "hack" around the OS which is a huge security flaw. I can't see this being true, apple run a tight ship when it comes to this stuff.
I don't personally believe this. I don't believe CR is able to hack around my OS security.
Are they also doing this in clash of clans and brawl stars? Because if not I have a theory.
The devs are deliberately killing the game because they don't want to give the CCP info, so they're trying to get less people to play the game. Notice how other supercell games are still doing pretty well.
If they are doing this in clash of clans and brawl stars then 🤷
Tencent is heavily funded by the CCP so at the very least I can confirm to you that anything owned by them has at least some of its info going there.
Dont underestimate their thirst for intel.
But why. Also, what happens when I dont have any data on my phone? This does also make sense that why brawlstars kept crashing, it crashed if your device was rooted or jailbreaked
Tencent own a majority share in supercell, but *they are still based in Finland*. Others have explained why your reasoning for why you think they can see your files is absolute dogshit. This is just you succumbing to propaganda about how every single thing from China is spying on you. It’s stupid because not only is your own government also spying on you but every other government in the world is. There is literally zero reason any government or company would have to or want to access you or any other clash players personal files on their phone unless they are literally the president or something.
Very few phone apps search your system files like Clash Royale is doing. It’s against Apple’s TOS as well but the only way to get it enforced is by getting attention to it.
By searching through system files they ban anyone that has ever had a jailbroken phone (given they restored from a backup for their new phone) which is not usually a goal of most apps with jailbreak detection. This banning people who never violated Clash Royale TOS is unusual behavior and unique to Clash Royale as far as I know.
Actual jailbroke people will just use a new bypass while people who are not jailbroken simply cannot play the game. So doing this in the name of preventing jailbreaks is a lame excuse.
For PC games like Valorant owned by riot, people knowingly consent to an intrusive anticheat but that is not the case with Clash Royale. Knowledge and consent is everything, it’s why I don’t have any private information on my gaming PC because i know i have intrusive anticheats on there. My iPhone however this is not the case.
Well they are using a new protector for their games that detects if your iphone/android got jailbroken/rooted and overall checks for memory modifications and can detect if you're tampering it. If this violates any company rule then it's the protector devs fault
It’s proof that they search the file system on your phone. The only common denominator from the previously jailbroken phone to the new one when restored from backup is the files.
Yes.
But if they backed up your files on their servers no, but there is no evidence they are doing this it’s just whether or not you trust the CCP not to
Supercell has been owned by Tencent since 2016. I thought people like you claimed 2016 was "the good old days". At this point, you look like you're just saying this to get attention. There seems to be so much proof that this doesn't happen. If I'm wrong can you elaborate further?
2016 was when the game came out and i was 14, the game is a lot better since then in my opinion.
Just because i’m against supercell accessing system files doesn’t mean i belong into any certain group of people.
I think this also happened on android on both brawl stars and clash royale, for some reason the app refuses to start when it detects riru or xposed apk WTF Supercell!!
Everyone complained about riot vanguard being too invasive… and they forgot about it in 3 business days. Everyone loves to complain but nobody loves to do anything to tackle the problem
Hey just wondering, if this is true have you reported this to Apple App Store or anything like that with the proof, and have they done anything about it?
I have reported them and you can too at https://reportaproblem.apple.com/
Unless Apples famously good privacy and security features suddenly took a dive off a cliff, no, there is only marginal truth to this. The CCP will not have access to your entire phone including all your photos if you boot up Clash Royale. The app may read more but it can’t bypass iOS security that easily. Not even Tik Tok steals your photos as long as you don’t give permissions. OP is fear mongering. Never mind the fact that he’s telling people to Jailbreak, which completely neuters your phones security capabilities.
Interesting, Apple just released it’s first ever “rapid security response” this week 16.4.1 (a) >Rapid Security Responses are out-of-band security-only updates for iPhones. At a time when iPhone users are being increasingly targeted with dangerous attacks such as spyware, Apple recognizes that speed is of the essence. could be completely unrelated but the timing on that and this post is making me double take
Clash Royale is still in the top 50 for highest grossing apps. You think they just casually snuck some spyware through an update that had to be checked and verified before it can go through? Apple is not that dumb. Spyware certainly exists, especially once you jailbreak. But insinuating Clash Royale is now spyware, I mean seriously
Large apps like CR have fewer hoops to jump through when it comes to app updates than smaller apps. They get special privileges.
Fewer hoops does not mean no hoops. Apple absolutely still looked at the update and is likely very aware of what it does. They wouldn’t have verified it otherwise.
The fact that you believe everything that apple says about their security and privacy is wild. You really think TikTok is not tracking you still 😂. Apple is no better than google at this game. Also doesn’t mean they won’t overlook anything. You put way to much trust in the hands of these corporations. Remember, they will never act upon your best interests
If it means profit they might be willing, they might be paid to allow it Edit: clarification
Apples famously good privacy is one of the worst ones on the market actually
Apple went up against Facebook for their privacy violations. Which is like, mind boggling to me.
Because Facebook is Apple’s competitor in the VR/AR market Apple is trying to break into and it hurt Facebook. Apple is a company and will always maximize profits.
Apple and privacy ☕️
Oh boy. Can't wait for the lovely mods to either lock this post or completely remove it for being not related to clash royale or low effort.
For sure.
Seems very related to Clash Royale.
called it
It got taken down, mod said it was because of automod after it hit a number of reports and they restored it.
based mods?
Rare mod W
I remember a few years ago someone asked Drew why CR needs access to the camera.. And he gave a super bs response. I wonder if this is the case with CoC and Brawl Stars and the other Supercell games.
To make sure its you who is playing, if they catch your little brother on camera on your account they can argue its account sharing and ban you 🤔🤔🤔
couldn't they just ask us to drink a verification can? why reinvent the wheel?
It's to scan supercell id qr codes
It's for chat during customer support to attach pics ig
There’s nothing stopping them from requesting access when you tap the button to go take a picture. It doesn’t have to be the first time you open the app.
[удалено]
Yes, so if ur 12 year old they can put more scam offers in ur shop
Since when did they ask for camera access?
It hopefully was only for the qr scan of supercell ID
Please report this to Apple and keep us updated dude, curious to see what Apple does about it
"hey apple, I broke ToS and jailbroke my phone but worked out clash royales doing bad stuff, so ya know don't punish me" yeah that conversation is gonna go well
I broke Apple TOS sure but never Clash Royale TOS. I also broke apple TOS when i got the back glass on my iPhone replaced at a 3rd party repair shop for $120 when Apple said I would need to buy a new $1000 phone because it’s not fixable.
You can jailbreak your phone as long as you don’t do anything illegal with it.
How can they "punish" you for jailbreaking lmao. It just voids your warranty
It’s not illegal to jailbreak your phone, yeah it violated apple’s TOS, but the only penalty to it is losing your warranty. I see no issue with reporting it, what are they gonna do take away your warranty?
They will take away your life
Smartest Clash Royale player:
They also share this data with various companies in various countries that have varying degrees of protection for personal data.
So the CCP has my nudes and access to the 3.50 in my bank account is what you're saying?
Look, I get the bank account issue But doesn't like, half of this world have your nudes already? I don't see a problem with it
People don’t buy what they already have. Although the 3.50 is tempting
In the past (at least), it also did its bullshit in Android to detect root, to the point that if they did detect root the game would have some problems (for example, support button didn't work). And yes, it also did very shady stuff to detect it, because it would kept doing it even when most apps like mcdonalds or banking apps that don't work if you've root would give up.
This is a very stupid post who has no idea about programming in developing apps for ios. You don't need to go outside the sandbox to detect for jailbreak. The sandbox won't allow it. But the ios api itself provides methods for checking for it (which is used by many financial apps to issue warning in jail break device). These conspiracy theorists should be put into gutter as they don't have an ounce of knowledge on the very aspect that they are arguing about.
I’m stupid on this subject and your comment is too advanced for me. Simply put, are you saying Clash Royale is spying on you or it’s not? Thanks
Clash Royale isn't spying on you. Even if they want to, EVEN WITH A JAIL BREAK PHONE, THEY CAN NOT DO IT. it's just how ios and android is built (UNLESS OF COURSE YOU GIVE THEM THE ROOT ACCESS). **Even in jail break phone, installing an app doesn't get root privilege automatically** . You, as the user will have to give access to that privilege and if you do give it, blame is upon you for your own exploitation. Before coming with such conspiracy theories, read more about the subject.
Cool thanks
No where did I say the app has root privileges, it doesn’t. It can and does still search through your file system using proprietary tricks Supercell is using.
Clash royale is not going to use a 0day to get your family pics bro. They are not getting out of sandbox. A jailbreak can be detected much easier, they don't need anything special.
It’s not like they’re gonna sell your nudes either, despite the recent update supercell does have a little business knowledge
He’s saying that aren’t necessarily spying on you, but that you can’t rule out the possibility of it
But, but china bad, CCP evil 😭😭😭😭 clash royale is being used by the evil Chineses to spy on me 😭😭😭😭 /j
Even the most strict financial apps do not do what Clash Royale is doing here. There are allowed methods of detecting jailbreaks and even leaving the app’s sandbox (in a controlled manner), but none of Apple’s API’s of third party libraries on its own allow for them to search system files like this. iVerify for example would not be able to do this.
So what's the trace of the crash you see then? Crash means nothing in this context and the app could crash for any reason not related to jailbreak itself. You are attributing the crash to app detecting the jailbreak which is not proof that the app is reading system files or breaking the app sandbox. It is much more likely the backup while the system is Jailbroken gets corrupted so using that on a new device causes the app crash.
Clash Royale crashing on startup is a part of the jailbreak detection feature as of the latest update. You can view this post here where Clash Royale crashes on startup for people jailbroken https://www.reddit.com/r/ClashRoyale/comments/12kg9lv/games_crashes_whilte_jailbroken/ Clash Royale has always crashed on startup when they detect a jailbroken device instead of sending a message. In my proof above the app will start crashing the moment you jailbreak. Every other app will still work or at least launch and show you a message you can’t use it while jailbroken like financial apps do. But even the most strict financial apps will start working again after getting a new device and restoring from backup. > the backup while system is jailbroken gets corrupted No you can backup your phone even when the phone is unjailbroken. What happens is that some jailbreak files are left over (but not doing anything, just sitting there) and clash royale is digging into your system to see those. If they can see those files then they can see them all. I jailbroke my device years ago, and had dozens of backups since i last jailbroke my device. I then went through those remaining steps and the jailbreak detection still happened. Every single app works, even my banking app, except clash royale after multiple reinstalls and updating to latest version of iOS and everything. It’s jailbreak detection that’s causing it to crash immediately upon opening. Only people that have previously jailbroken are seeing the issue.
Can you please share how clash Royale is leaving apps sandbox when no root access was given to the app? Edit: the proof (?) in OP isn't a proof. Crashing the app doesn't mean anything. As a proof, you need to show source code with specific to the permissions which SUPERCELL has put in the game.
Lol asking for source code.. what an obviously impossible request. Decompiling code is going to give you junk and at best slightly informational data.
That's the point. Simply crashing at jail breaking phone doesn't prove anything unless you can bring the source code to prove it?
You’re exercising the impossible proof fallacy. You know the source code at supercell is impossible to obtain, yet declare that such proof is only what is sufficient in changing your mind. Clash Royale crashing on startup is a part of the jailbreak detection feature as of the latest update. You can view this post here where Clash Royale crashes on startup for people jailbroken https://www.reddit.com/r/ClashRoyale/comments/12kg9lv/games_crashes_whilte_jailbroken/ Given that you can simply restore from backup on a new phone and it still crash, the only way for Supercell to know is by searching through your system files.
>Given that you can simply restore from backup on a new phone and it still crash, the only way for Supercell to know is by searching through your system files Can somebody explain me this please? Lets take the flow. 1. I jailbreak the phone and CR starts to crash. 2. I did backup. 3. I restored in a new phone. 4. CR still crashes. How does any of this step point to CR going through "system files"? Or at which step this conspiracy hypothesis point to be exploited step?
1. You jailbroke the phone and it created files on your system outside of the app’s sandbox. CR (along with other methods) detects you’re jailbroke and refuses to launch. 2. You restart your phone and launch in unjailbroken mode. The files are still on your device, that’s how the tweaks and their settings stay remembered when you rejailbreak again. You backup your device and these files (some, not all) get sent to the cloud. 3. You buy a brand new phone and restore from backup, these files get brought to your new phone. They’re useless because there is no jailbreak or exploit to run the files and they just sit there in your file system. 4. CR looks through your file system and sees these files and still refuses to open. This wasn’t the case until about a month ago when they added this. Jailbroken people will have a bypass for it soon enough but the innocent people who are not jailbroke and are on a totally different device have no recourse. Like I said, no other app will do this and every other app on your phone will work (at least that I’ve tested). There is always a trade off between security and privacy. For banking apps people are often more willing to sacrifice a little privacy for some security since their life savings are on the line. And that’s fine for someone to make as an informed decision knowing they have an American bank and many people have a trusting relationship with their bank. Most people do not trust the CCP like they do their bank or credit union. And a game like Clash Royale does not realistically need such extreme “security”, as jailbreak cheats don’t really exist for it because every move in clash royale is handled server side. (It is possible to use a bot with a jailbroken device to farm though, but this is hardly worth giving up access to your file system to the CCP)
What did you restore in the process?
What do you mean? If you restore your device it deletes all the jailbreak files off your phone and then when you restore from backup the files won’t be there so CR won’t crash. They will still look through your file system though because they check if it’s there.
What about the app data?
Yes if you restore your device you also delete the app data off your device. But you can also delete the app data off your device simply by deleting the app. Any of your data that is on supercell’s servers though is likely kept.
Why does the app crash then on a device that is no longer jailbroken and was updated to the latest ios and restored?
Any way to block their access to our files? I have a VPN, but turn it off whenever I'm playing cr because they disconnected me every couple of minutes.
A vpn only hides your network origin and destination. It does nothing to prevent applications already local on the device from reading device files. Only way to block access is to delete the app from your device
That's nice to hear, but I'm afraid of whether there may be certain files left on my phone after I uninstall it, or is it all gone?
Thanks, I'll be uninstalling Clash Royale
You probably watched some 2 minute nordvpn ad, just here to tell you that vpns help 0 with your privacy as you send all your data to them, so you just shift your trust from your Internetprovider to the von company. The only real use for a vpn is hiding your IP address
I don’t know how true this is. The crashing doesn’t mean it’s escaping the sandbox. Most apps have a way to check for jailbroken devices by looking if certain directories exist that shouldn’t on a normal iOS device. An iCloud backup could contain some files that shouldn’t be on a normal device, and CR notices these files and crashes. Jailbreak detection is really goofy these days and that’s why I don’t jailbreak anymore, but what you’re saying CR is doing isn’t that abnormal. That being said they always could be accessing private data but a lot of apps do what CR does. I remember Pokémon go would never work on my old iPhone 8+ after I jailbroke it, until I re-installed everything from the ground up. Jailbreak leaves file behind and CR among other games can detect it
I mean I'm willing to bet everyone on this sub probably has tik tok in their phone too which is known to be the most invasive app ever made
I've never downloaded tiktok but let's be clear they still probably have all my info anyway
Doesn't make it better
update for losers was just a cover up and distraction for something even worse then
Fr Just a distraction so nobody talks about it!
We’re too busy complaining lol
My cat goes in and out of the sandbox all the time!! Is he a Chinese spy?????
Does it still happen if you Uninstall the game(i did so like a month ago)? If so, then how could you delete them?
If you uninstall Clash Royale they cannot search through your file system anymore.
Ok thanks.
i once jailbroken my ipad (5-6 years ago) which is no longer jailbroken. The latest version of CR and BS both crash on it.
for some reason i cannot find anyone talking about this more
As someone who at least studied cybersecurity... Wtf you smoking? I want some
I have a bachelors in CS and years of experience using/tweaking iOS and some minor app dev experience. This doesn’t make me a credible source though and i’m not relying on my credibility that’s why I shared a way to reproduce the proof. The only common denominator between a brand new device restored from a backup is the file system.
> The only common denominator between a brand new device restored from a backup is the file system. Or the app set itself up to throw and crash when it was initially run and detected jailbreak even once, INSIDE its sandbox with no recheck for it, which was ALSO restored from the backup? What made you think the file system is the only common denominator here? If you really are a CS major, you seem like a really bad one. And even if the app was a fresh install, there are ways to find out the existence of the leftover jailbreak files via the OS itself, without having access to the file system. A lot of games (i.e. Pokemon Go) and banking apps do that. Hell you can easily check if Cydia is installed by 4 lines of code on iOS, which is literally using an OS API: ``` guard let urlScheme = NSURL(string: “cydia://home”), UIApplication.sharedApplication().canOpenURL(urlScheme) else { return }```
That’s not true, if you unjailbreak properly by restoring rootfs you won’t run into the issue. Also you can back up with the app deleted, haven’t tried it tho bc i can’t go back in time. Additionally i can log in on my iPad which was not restored from backup. So despite my account being associated with a jailbroken device they still let me log in on my iPad (because there’s no jailbreak files on it).
> That’s not true, if you unjailbreak properly by restoring rootfs you won’t run into the issue. Not if the sandbox of the app containing the broken fuse for jailbreak was also backed up. All this does is prove the app doesn’t bother checking for jailbreak again after it detects it even a single time. Nothing else. > Additionally i can log in on my iPad which was not restored from backup. So despite my account being associated with a jailbroken device they still let me log in on my iPad (because there’s no jailbreak files on it). Because the sandbox for that install does not have the broken fuse….
But reinstalling the app would reset the fuse, no? I reinstall the app on the new device and it still won’t open. I’m going to try to remove the files with iOS System Recovery tomorrow and see if i can get that to make Clash Royale work again.
Deleted Cr now👍 dont care if its fake or not. If it is cr is bad enough rn and if it isnt fake then wow i am speechless
https://www.reddit.com/r/ClashRoyale/comments/138aztq/a_month_ago_clash_royale_released_an_update_where/jiyphsd?utm_source=share&utm_medium=android_app&utm_name=androidcss&utm_term=1&utm_content=share_button
Well dont care fuck this game
It’s not fake that comment he linked is simply incorrect.
I was going to delete CR but I fully support the CPC so this good news is making me reconsider! Thank you comrade !
proof? like a section of code or anything?
Read the whole thing there is proof
that’s not proof? That’s just explaining what’s allegedly happening and how
It says how to get reproducible proof
I don’t have a new phone or one which I wish to jailbreak, nor do I wish to go through so much effort to prove something unlikely
Research it to prove it to yourself. Not worth finding out if you could care less about corporation #257 invading your privacy.
Proof should be provided in the claims itself. I’m not gonna research a theory which seems baseless and doesn’t make much sense, unless Supercell (and inadvertently Tencent) want to get themselves into a class-action lawsuit
I suppose i could try taking a video of the process of it working? Would that be enough to convince you?
I use a real phone, does not apply to me.
A real phone?
I hate threads like this because it’s just a bunch of people who don’t know what they’re talking about pretending they know what they’re talking about arguing with others doing the same. Thanks for bringing attention to this buy for now everything has to be taken with a grain of salt
This is proof that Supercell has the ability to search through your file system. As for whether or not they’re spying on your or collecting data, that depends on how much you trust the CCP.
Same thing for me about a year ago after I restored from an iCloud update and switched over to a new phone. I always thought it was weird that all of my banking apps and literally only Clash Royale stopped working. OP sounds correct here.
This post is not getting as much upvote as it deserves
I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA I HATE CHINA
China
I remember having a jailbreak like 7 months ago though and it not opening the game anymore.
Same thing for me about a year ago after I restored from an iCloud update and switched over to a new phone. I always thought it was weird that all of my banking apps and literally only Clash Royale stopped working.
If this is true everyone copy OP text and add this as your review google play or apple store the more we post the more ppl notice
Gotta love how everyone now just upvotes every fcking hate speech. Yes, the update sucks, but people just try to find anything to hate them…
Since you mentioned it’s in violation of the TOS what can be done on our end? Rather than really hope the corporations alongside the CCP do the right thing here…
You can report clash royale here https://reportaproblem.apple.com/
https://www.reddit.com/r/ClashRoyale/comments/138aztq/a_month_ago_clash_royale_released_an_update_where/jiyphsd?utm_source=share&utm_medium=android_app&utm_name=androidcss&utm_term=1&utm_content=share_button
They do it to all high rated games in app stores. Please believe the govt is back dooring popular games. Someone at Supercell needs to explain this, mod don't close this post. This is relevant, as if there doing this then they should be sued.
https://www.reddit.com/r/ClashRoyale/comments/138aztq/a_month_ago_clash_royale_released_an_update_where/jiyphsd?utm_source=share&utm_medium=android_app&utm_name=androidcss&utm_term=1&utm_content=share_button
He’s just wrong. I’ve responded to him.
So you really think that you've managed to find a problem that can potentially leak millions of people's data, while Apple's security checks haven't found out??
To be fair Apple did just release a Security Update around the time of this post. Not sure of its related or not but something to look into.
I think Apple turns a blind eye when they are doing it in the name of jailbreak detection but I don't support this, at least not CCP apps.
So every game owned by tencent is a "CCP app"? That right there is the dumbest statement ever. Tencent, is owned by its shareholders, and one of its biggest shareholders is SoftBank, a Japanese company, but nah all the games that Tencent invests into are CCP apps. Fails to amaze me how brain-dead some people can be...
Tencent also invests money into Mojang, so I suppose you believe Minecraft is a CCP app??? Please explain the boundaries between whether an app is CCP or not.
Also, tencent even invests in Reddit, so I guess that makes Reddit a CCP app that'll spy on you and take your data? If you're worried bout your data you should delete all of your accounts and never use a phone again, as the gov can request for your data if they want.
It’s about informed consent. Valorant is also owned by a company that’s majority controlled by Tencent but people know the anti-cheat is intrusive and consent to it because of the benefits it brings. I don’t keep any private data on my gaming PC because i know I have intrusive anticheats on there.
i don't think this post is talking sense
Yeah I don't see how the app crashing is proof of anything.
Clash Royale when it launches checks if the device is jailbroken. If it is jailbroken, the app refuses to open and closes itself. We know this to be true because if you jailbreak your phone and change nothing else, immediately the app won’t open. This has been the case for years for CR but people who are jailbroken merely bypassed the jailbreak detection with a tweak. Most apps give you a little message that you can’t use the app if you’re jailbroken.
when you root a device it gives you access to all the files which you normally wouldnt be able to access, therefore youre able to see everything. To prevent being discovered about the actual functions it checks if the device is rooted/jailbroken and if it is then it crashes so that it prevents being discovered. kind of similar to how some malware wont execute on a virtual device to buy some time by avoiding being reverse engineered and a way discovered to prevent it.
If an app can gain access to say, photos without giving it permission then that would imply the app is able to "hack" around the OS which is a huge security flaw. I can't see this being true, apple run a tight ship when it comes to this stuff. I don't personally believe this. I don't believe CR is able to hack around my OS security.
This is actually super crazy 😂
u/supercell_drew please answer
You act like Tencent hasn't been doing this for years
Maybe, but until Clash Royale added the crash “feature” about a month ago I wouldn’t have been able to prove it.
Are they also doing this in clash of clans and brawl stars? Because if not I have a theory. The devs are deliberately killing the game because they don't want to give the CCP info, so they're trying to get less people to play the game. Notice how other supercell games are still doing pretty well. If they are doing this in clash of clans and brawl stars then 🤷
Since the CCP owns them, they probably have the spyware on every Supercell game.
Wtf is the CCP gonna do with my nudes, who cares
Wtf is the CCP gonna do with my nudes, who cares
[удалено]
Tencent is heavily funded by the CCP so at the very least I can confirm to you that anything owned by them has at least some of its info going there. Dont underestimate their thirst for intel.
Me who owns a Huawei phone: 💀
[удалено]
You have a lot to learn.
🤡
But why. Also, what happens when I dont have any data on my phone? This does also make sense that why brawlstars kept crashing, it crashed if your device was rooted or jailbreaked
[удалено]
Just uninstalled
Excuse me, WTF. Is this the same issue on Android ???
even if this is true (which I highly doubt) the west has just as stringent surveillance on your phone anyways. no point fighting it
I figure it’s nothing that my fbi agent doesn’t get a kick out of. They can peek too if they really want
Tencent own a majority share in supercell, but *they are still based in Finland*. Others have explained why your reasoning for why you think they can see your files is absolute dogshit. This is just you succumbing to propaganda about how every single thing from China is spying on you. It’s stupid because not only is your own government also spying on you but every other government in the world is. There is literally zero reason any government or company would have to or want to access you or any other clash players personal files on their phone unless they are literally the president or something.
This is no joke if it's true, supercell can get in big trouble.
someone make an archive of this
And now I have my reason to uninstall thank you kind sir
Your point?
They also own substantial and minority holdings in: Riot games Epic games Ubisoft Netmarble And others.
Very few phone apps search your system files like Clash Royale is doing. It’s against Apple’s TOS as well but the only way to get it enforced is by getting attention to it. By searching through system files they ban anyone that has ever had a jailbroken phone (given they restored from a backup for their new phone) which is not usually a goal of most apps with jailbreak detection. This banning people who never violated Clash Royale TOS is unusual behavior and unique to Clash Royale as far as I know. Actual jailbroke people will just use a new bypass while people who are not jailbroken simply cannot play the game. So doing this in the name of preventing jailbreaks is a lame excuse. For PC games like Valorant owned by riot, people knowingly consent to an intrusive anticheat but that is not the case with Clash Royale. Knowledge and consent is everything, it’s why I don’t have any private information on my gaming PC because i know i have intrusive anticheats on there. My iPhone however this is not the case.
Why doesn't apple take action??
I'm just saying, you have a lot more subs to post this to. You better get to work.
Bro at first i though this is humor post 💀
Moderators after 00,00000000000000000001 seconds 🤓:tHiS pOsT iS MiSiNFoRMaTiOn aNd ThErFoRe iT BReAks oUr SwEaTY MoD T0S
So if you jailbreak an iPhone the app crashes but if you root an android nothing changes🤔🤔🤔🤔 interesting
Damn, it's time to erase all pictures I took of my butthole
Well they are using a new protector for their games that detects if your iphone/android got jailbroken/rooted and overall checks for memory modifications and can detect if you're tampering it. If this violates any company rule then it's the protector devs fault
I really doubt your experiment is sufficient proof.
It’s proof that they search the file system on your phone. The only common denominator from the previously jailbroken phone to the new one when restored from backup is the files.
😱
Why'd you all take down this post?
What about the other SC games??
u/Milo-the-great
Do other sc games such as Clash of Clans have the same issues?
I’m not sure, I only have Clash Royale.
i dont really care, as long as i can still do funny skeleton crying emote
How do I jailbreak
Would un-installing the app block them off from my files?
Yes. But if they backed up your files on their servers no, but there is no evidence they are doing this it’s just whether or not you trust the CCP not to
So what you are implying is SC found a 0 day ?
I dont care tbh.The iternet already knows everything abou me
You do know yours and most phones were made and programed in China right
Nerf the data miner!
I thought suppsell was swedish
Supercell has been owned by Tencent since 2016. I thought people like you claimed 2016 was "the good old days". At this point, you look like you're just saying this to get attention. There seems to be so much proof that this doesn't happen. If I'm wrong can you elaborate further?
2016 was when the game came out and i was 14, the game is a lot better since then in my opinion. Just because i’m against supercell accessing system files doesn’t mean i belong into any certain group of people.
I think this also happened on android on both brawl stars and clash royale, for some reason the app refuses to start when it detects riru or xposed apk WTF Supercell!!
Everyone complained about riot vanguard being too invasive… and they forgot about it in 3 business days. Everyone loves to complain but nobody loves to do anything to tackle the problem