In reference to this topic
https://forums.malwarebytes.com/topic/177489-cerberusapp-for-android-receives-false-positive/
I realize this is an old topic, but the recent T-Mobile data breach caused me to review my security. I use CerberusApp and tolerate Bitdefender's and other anti-malware's constant (and undismissable, exception prohibitable) reminder that CerberusApp is dangerous malware. Fortunately my Malwarebytes does not do that (if it ever did) as I have a very old version. Interestingly Malwarebytes identified 1Password as malware but I made an exception.
I was aware the CerberusApp revoked all the *** lifetime *** licenses granted to early adopters (who paid a whopping one time $2.99) as permitted by their TOS, but this does raise some questions about trust if they would do that to a seemingly small group of customers.
Anyway, my concern is not about a PUP, but rather about the app phoning home or about CerberusApp having a data breach and allowing a backdoor into my phone. Cerberusapp refused my requ , or refusing my request to add 2FA to their login which would have mitigated the latter.
One thing that Cerberusapp does that other phone finders or wipers does not, is to protect against sim swaps. The T-Mobile breach can facilitate sim swapping by bad actors which can reduce the protection afforded by 2FA. So CerberusApp is valuable as another layer of protection and I want to continue to use it if I can understand all the risks. I accept that it allows tracking. Laughingly BitDefender also does tracking so their threat alert may be more of just a tactic to protect their market. My concern is if it allows spying (by them) or materially increases the risk of spying by others.