cell-phones – Page 2 – WindowsTechs.com

China’s Olympics App Is Horribly Insecure

Posted on January 21, 2022 by Bruce Schneier

China is mandating that athletes download and use a health and travel app when they attend the Winter Olympics next month. Citizen Lab examined the app and found it riddled with security holes.

Key Findings:

MY2022, an app mandated for use by all attendees of the 2022 Olympic Games in Beijing, has a simple but devastating flaw where encryption protecting users’ voice audio and file transfers can be trivially sidestepped. Health customs forms which transmit passport details, demographic information, and medical and travel history are also vulnerable. Server responses can also be spoofed, allowing an attacker to display fake instructions to users.
…

Continue reading China’s Olympics App Is Horribly Insecure→

Law Enforcement Access to Chat Data and Metadata

Posted on December 10, 2021 by Bruce Schneier

A January 2021 FBI document outlines what types of data and metadata can be lawfully obtained by the FBI from messaging apps. Rolling Stone broke the story and it’s been written about elsewhere.

I don’t see a lot of surprises in the document. Lots of apps leak all sorts of metadata: iMessage and WhatsApp seem to be the worst. Signal protects the most metadata. End-to-end encrypted message content can be available if the user uploads it to an unencrypted backup server.

EDITED TO ADD (12/13): Here’s a more legible copy of the text.

… Continue reading Law Enforcement Access to Chat Data and Metadata→

On Cell Phone Metadata

Posted on November 2, 2021 by Bruce Schneier

Interesting Twitter thread on how cell phone metadata can be used to identify and track people who don’t want to be identified and tracked.
Continue reading On Cell Phone Metadata→

How the FBI Gets Location Information

Posted on October 27, 2021 by Bruce Schneier

Vice has a detailed article about how the FBI gets data from cell phone providers like AT&T, T-Mobile, and Verizon, based on a leaked (I think) 2019 139-page presentation.
Continue reading How the FBI Gets Location Information→

Security Risks of Relying on a Single Smartphone

Posted on September 8, 2021 by Bruce Schneier

Isracard used a single cell phone to communicate with credit card clients, and receive documents via WhatsApp. An employee stole the phone. He reformatted the phone and replaced the SIM card, which was oddly the best possible outcome, given the circums… Continue reading Security Risks of Relying on a Single Smartphone→

Details of the Recent T-Mobile Breach

Posted on August 27, 2021 by Bruce Schneier

Seems that 47 million customers were affected. Surprising no one, T-Mobile had awful security.
I’ve lost count of how many times T-Mobile has been hacked.
Continue reading Details of the Recent T-Mobile Breach→

Commercial Location Data Used to Out Priest

Posted on July 23, 2021 by Bruce Schneier

A Catholic priest was outed through commercially available surveillance data. Vice has a good analysis:

The news starkly demonstrates not only the inherent power of location data, but how the chance to wield that power has trickled down from corporations and intelligence agencies to essentially any sort of disgruntled, unscrupulous, or dangerous individual. A growing market of data brokers that collect and sell data from countless apps has made it so that anyone with a bit of cash and effort can figure out which phone in a so-called anonymized dataset belongs to a target, and abuse that information…

Continue reading Commercial Location Data Used to Out Priest→

Analysis of the FBI’s Anom Phone

Posted on July 12, 2021 by Bruce Schneier

Motherboard got its hands on one of those Anom phones that were really FBI honeypots.
The details are interesting.
Continue reading Analysis of the FBI’s Anom Phone→

Identifying People Through Lack of Cell Phone Use

Posted on April 29, 2021 by Bruce Schneier

In this entertaining story of French serial criminal Rédoine Faïd and his jailbreaking ways, there’s this bit about cell phone surveillance:
After Faïd’s helicopter breakout, 3,000 police officers took part in the manhunt. According to the … Continue reading Identifying People Through Lack of Cell Phone Use→

Phone Cloning Scam

Posted on April 6, 2021 by Bruce Schneier

A newspaper in Malaysia is reporting on a cell phone cloning scam. The scammer convinces the victim to lend them their cell phone, and the scammer quickly clones it. What’s clever about this scam is that the victim is an Uber driver and the scamm… Continue reading Phone Cloning Scam→