Do you mean it's a standard practice to have 2 phones, one specifically for banking?
What about E-wallet? Doesnt sound practical to separate this

Yes, immediate family experience they will msg ask you order from website, then will got problem, they then tell you install this app to order, once the old people install the app got some permission they will tell them to press here press there, once permission given gone case.

My case the old people realize she's been phished she wanted to go bank and stop any transaction, the scammer can even msg and say where you going, I'm controlling your phone already, your account money transfer out already, you don't believe you check see. Luckily she didn't go check, else scammer can get the bank password also. She throw the phone at home and quickly drive to bank. Luckily bank account managed to lock and no transfer made.

Moral story is


don't simply install apk other than play store then give funny permission
If kena d, don't do anything else straight to to bank, they can control phone but if no password they can't do shit

If tng probably they tried order something and scammer recorded the pin down as they can view the phone screen

No security chip...Samsung has KNOX, Google has TITAN...

Also ccp phones has more bloatwares more than the rest...

some of these bloatwares... triggers pop ups.. to install apps or games... which then triggers to install other things...

thats on the phone...
---------------------------------------
what about the rest of my questions?.. do you enable SIM PIN?... do you enable 2FA for all your major apps?...

doesnt matter if you got knox or titan la.

this is social engineering issue

they will give you instructions to go developer settings and enable apk installations from unknown sources saying you need it for promotion

just get an iphone for the old people

you think android made by kim jong un is it??

you think open source software can be more secure than ios?

you know right google hands over even your search results to the fbi when requested? if you accidentally search for something a criminal searched for in a time period, you gone.

i dont care if apple has my data, but at least it is not selling it like google

we are talking about malicious apk installs and you went to quantum computing to break appels encryption lol

got one linus video explained how this happened





keyword: ss7 attack

https://www.firstpoint-mg.com/blog/ss7-attack-guide/

Summary:

SS7 is the system that the phone companies use to connect phone calls, its not malware of any kind, it literally is a part of the phone company. SS7 vulnerabilities are not tied to a specific device or operating system.

These attacks exploit weaknesses in the SS7 protocol, which is used by telecom networks to exchange information for functions like call routing, text messaging, and roaming.

black hat hackers can integrate the global telecommunication network and request information from any SIM card they want.

If they gain the trust of the network you are registered in, they can eavesdrop or redirect your calls and messages