Just saw the mentaloutlaw video. Graphene OS has a “duress pin” that wipes the phone when given a certain pin.
fun fact, in the UK the offence is “failing to decrypt the device when required to do so” making these measures quite dangerous.
That said, unless you are being charged under a national security crime, the maximum sentence for “failing to decrypt the device when required to do so” is up to two years, so the game’s the game.
Wow the UK is a turd too.
Yeah, go to the UK and say "I support Palestine Action" and see what happens. They're having a rough time of it right now.
I wonder how they'd look at it if previous cracking attempts wiped the device. Is that "failure" to unlock punishable or not? The phone was wiped already - the user can't unlock it even if he wanted to.
Similarily, is it possible to make it impossible to prove the device was wiped due to the PIN and not beforehand?
I still dont know if i would trust Google hardware. Call me paranoid but what are the chances of mentaloutlaw beeing a psyop "get this very specific hardware and software setup so the police cant hack you" sounds a lot like encrochat.
For awareness you can achieve the same on CalyxOS by setting it to automatically wipe the phone after either 5 or 10 failed unlock attempts. Though this does mean a child (or childish friend) could do it accidentally. I'd prefer a duress PIN, but then I'd probably forget it if I ever really needed it.
There's also a less nuclear 'panic trigger', that allows you to hide apps or choose to uninstall any apps you like. No PIN needed, simply hold the power button and select 'Panic Trigger', there's then a fullscreen 5 second countdown before your select private/sensitive data is obliterated.. unless you hit cancel. The user can set up in advance what the panic trigger does - eg which apps to uninstall (deleting their data and auth keys), all cloud provider apps with sensitive data such as email apps or cloud storage provider apps are recommended.
For the duress PIN, an easy way to remember it would be to reverse your regular PIN
1111
You’re right, that is easy to remember!
Holy based
Now that's a good idea!
Sounds like they would do you for destruction of evidence.
Electrifying idea
Intriguingly so.
I just had this thought today lol. Either that or loading some malware onto the phone that executes on USB connection.
I mean, this is just general patriotism I think
Very "Don't tread on me."
Imagine dropping USBs in different shells and handing them out to migrants
Would this be difficult to actually put together? Asking as a mostly casual user of technology and of course for purely academic purposes.
Depends if the phone is supposed to still work.
If you just take an empty shell it shouldn't be hard at all to put an USB killer inside.
If you want to keep a functional phone, that's very difficult. You'd likely have to reduce the size of the battery by half to free some space and then design a custom USB killer to fit into that space. And then you need some kind of switch to switch between regular USB usage and USB killer mode. Or you just hard-wire it to USB killer only and charge your phone exclusively with wireless charging.
USB-C has a lot of pins, some custom built cable could use nonstandard pins for power and data and the standard data ones for the 20kV line.
Or just run the 20kV line on the data pins and leave power standard. That way you can use a power-only cable to charge the phone.
The pins are quite close to each other, wouldn't 20kV just jump between them?
True, didn't think of that.
I guess a much lower voltage of let's say 200 volts would kill a device just as effectively and probably wouldn't arc itself.
Another option would be a smart device that first senses some current and only then dumps the 20kV.
You have piqued my curiosity. I was imagining a non-functioning device with the sole purpose of hampering USB/devices. Like if I were to, conduct research, I would probably just have the insides filled with sand or something to give it heft or the illusion of being a real phone.
FYI the word is “piqued.”
Good looking out! Corrected.
Is this funky looking police tablet a real thing, and if so, what exactly is it doing?
It is a real thing and they are produced by a company called Cellebrite. They are used in digital forensics. So if they get your phone confiscated or whatever, they can plug the funky looking police tablet and hack it.
Can always rely on Israel for digital forensics tech
It's real! It has a dozen different plugs for different phone models, and it can make a dump of the physical memory of the device, allowing you to read messages, files etc... without having to unlock it.
I used to work for a PI who used it, he was an incompetent piece of shit but the tech was fun to play with.
I have a broken phone with failed glue lying around. Might be a fun weekend project. Is it still destruction of property if you tell them beforehand that your phone will fry their device?
Edit: Well, not fully broken, but the parts to fix it properly cost more than the device. Even though it has a midrange snapdragon and 12 gigs of ram, 256 gigs of storage. Might try to find out whether there's any way to connect the board to a generic screen, but I'd wager there isn't. Really love the mobile device market.
Edit edit: We're getting really off-topic now, but looks like that board used a MIPI DSI connector, I think? Seems like it is standardised enough that it might be possible to source a generic screen and use it kinda like a sbc? Getting that to work might be the actual fun weekend project hiding here.
unreasonable search and seizure might cover that.
Luckily, I'm not in the US, so that doesn't really apply. But I might look up the relevant laws around here at some point.
Only the hottest memes in Cybersecurity
