Comment by archon810
3 months ago
Probably because it makes it easier to observe and/or intercept API calls and other data exchange between the client and the server. It's trivial to disable things like SSL cert pinning, etc. on rooted devices.
3 months ago
Probably because it makes it easier to observe and/or intercept API calls and other data exchange between the client and the server. It's trivial to disable things like SSL cert pinning, etc. on rooted devices.
… and then the return argument is that those who actually want to do this nefariously are already going to be able to hide device modifications/rooting.