TL;DR
- Google announced Intrusion Logging, a new Android 16 feature to help high-risk users detect if their device has been compromised by hackers.
- It securely backs up encrypted activity logs (like network info and app installs) to the cloud, accessible only to the user for forensic analysis.
- The feature uses the new Intrusion Detection API, isn’t enabled by default, and requires activating Advanced Protection mode to use.
Android is supposed to be a (mostly) open-source OS. Users shouldn’t have to worry about Google.
Android is. The problem is that everyone submits their apps to the Google Store, and then use Google tools to make them dependent on Google services. So while you can fairly trivially not install any of Google’s proprietary software, it’s functionality is going to be heavily limited without them.
AOSP is open, Googles additions on top of that are not.
It was at one point