126
submitted 1 year ago by Dislodge3233@feddit.de to c/privacy@lemmy.ml

I'm running Graphene on a Pixel 6. I lost it and someone opened it somehow and called two of my contacts to give it back.

I'm a bit confused how this even happened. When I got the phone back, they were going through my contacts. I checked app usage stats and they went through a banking app (not missing money), maps, signal, etc.

Is there a way to figure out how they even unlocked my phone?

top 50 comments
sorted by: hot top controversial new old
[-] mulcahey@lemmy.world 55 points 1 year ago

Gonna need to know more. What method do you use to lock your phone? Is it rooted?

Also: did they return the phone to you, or to your friend? Could it be your friend who went through these apps?

[-] Dislodge3233@feddit.de 20 points 1 year ago

Fingerprint and pin code. They left the phone at a store nearby and I went to pick it up

[-] otter@lemmy.ca 37 points 1 year ago* (last edited 1 year ago)

Odd suggestion, but do you still have their contact info? Could you ask them? 😄

You could also send them a small thank you gift and ask them with that, so not to make it seem like you're accusing them of anything

It's a reasonable request, you could say that you need to keep your phone secure for work, and while it was great that the stranger was able to get it to you, you're following up on if there is some bug you need to look into


Unrelated, it might be good to set up a "If lost, call ____" type message. If you don't have another number, email also works.

[-] Dislodge3233@feddit.de 13 points 1 year ago

Yeah. Definitely setting that up now haha. They used my phone to call my contacts, so I don't have their number

[-] LunchEnjoyer@lemmy.world 10 points 1 year ago* (last edited 1 year ago)

~But it whoever they called, will have it, so maybe find out which of your contacts got to know about it?~ This is a mystery that we need to solve now!

Edit: I'm dumb.

[-] YoorWeb@lemmy.world 32 points 1 year ago

They used his phone...

load more comments (1 replies)
[-] jet@hackertalks.com 16 points 1 year ago* (last edited 1 year ago)

Is your pin simple? If you hold your phone up to the light can you see the smudge marks where your pin usually goes?

Do you have people set up as emergency contacts via the lock screen?

[-] loganb@lemmy.world 7 points 1 year ago

GrapheneOS also has this cool feature called Scramble PIN Layout to try and protect against guessing the pin from fingerprints on the screen.

[-] Inductor@feddit.de 14 points 1 year ago

It might have been the fingerprint sensor. They can be fooled. Mine occasionally thinks the inside of my trouser pocket looks just like my finger.

load more comments (1 replies)
[-] jacktherippah@lemmy.world 34 points 1 year ago

This person is clearly well-intentioned, so I don't think an exploit was the cause of your phone being unlocked. If they knew an exploit it's likely that by now everything about you would've been compromised already, like you would've lost access to your accounts and all your money would be gone. This person probably unlocked your phone by using your pin code, so either it was a very common pin code, or something suggested here, like smudges on your screen revealing the pin code, or highly unlikely, they guessed your pin code. Anyway, it's better safe than sorry so check if your OS' been tampered with using the GrapheneOS auditor app. Even if it hasn't, you should back up everything and factory reset it just to err on the side of caution. And in the future, use an 8-10 digit pin code with pin scrambling enabled.

[-] jet@hackertalks.com 16 points 1 year ago

100%, depending on your threat model, your device has been compromised and out of your control. You have evidence that the device was unlocked. You can no longer trust the device

Probably should change your PIN too

[-] Darkassassin07@lemmy.ca 32 points 1 year ago

Was it perhaps unlocked when you lost it?

I know I've set my phone down unlocked a few times; particularly at work (in a warehouse).

load more comments (12 replies)
[-] dutchkimble@lemy.lol 29 points 1 year ago

Is your pin something like 1234? Do you have emergency contacts set up? Do you have a setting to not lock the phone until very long? Or a smart unlock based on location or any other automation setting? An easy password hint pops up or something? Perhaps your parents forgot to mention you had a twin, who face unlocked it.

Regarding app usage, my guess is they tried to see whom to contact to give your phone back, or map history, the banking app could be a touch by mistake too.

[-] HurlingDurling@lemm.ee 14 points 1 year ago

Hey, how did you guess my secret pin!? That is a very difficult pin that I've had for every account for years! /s

[-] Rozz@lemmy.sdf.org 13 points 1 year ago

I have that same combination on my luggage!

[-] XTL@sopuli.xyz 23 points 1 year ago

Do those contacts happen to be your ICE? Some phones will allow those from the emergency dialer without unlocking. Don't know about grapheme.

[-] Dislodge3233@feddit.de 6 points 1 year ago

Graphene has and emergency dialer, but you can't call my contacts from it.

[-] xarexyouxmadx@lemmy.world 19 points 1 year ago

My guess would be that maybe it wasn't locked in the first place or they happened to randomly try a few pin combinations & got lucky..

I think those are most likely scenarios.

Now if you're some very important person who could be target then I wouldn't assume what I stated previously & instead assume the worst.

[-] Dislodge3233@feddit.de 20 points 1 year ago* (last edited 1 year ago)

My mom says I'm very important ... so I'll assume this was a state actor

But yeah, this is most likely. I changed my settings to lock faster with a longer pin

[-] skullgiver@popplesburger.hilciferous.nl 17 points 1 year ago* (last edited 1 year ago)

They clearly seemed to mean well. Maybe you can ask?

I imagine you may have lost your phone while it was still unlocked. It's possible that there's a Graphene lock screen bypass out there, but I doubt someone with such knowledge will use it to return your phone to you. Most "hacker" style lock screen bypass I imagine someone wanting to return the phone will do is checking for smudges on the PIN area of the lock screen and determining the code from that.

To combat someone unlocking your phone through smudges, you can enable PIN scrambling.

[-] neutron@thelemmy.club 13 points 1 year ago

Perhaps they simply took out the sim card and inserted into another phone, giving them access to contacts (that could have been saved into the chip instead of the original phone)?

[-] sqgl@beehaw.org 6 points 1 year ago* (last edited 1 year ago)

Good thinking but doesn't explain how they accessed the apps.

load more comments (1 replies)
[-] Darkncoldbard@lemmy.world 4 points 1 year ago

There's no way it's that easy.... is it??

[-] thayer@lemmy.ca 2 points 1 year ago* (last edited 1 year ago)

No, it isn't. I've used many Android phones over the years and none have ever defaulted to storing contacts on the SIM. SIM storage is very rudimentary, and you'd have to go out of your way to make use of it.

load more comments (1 replies)
[-] possiblylinux127@lemmy.zip 13 points 1 year ago

When you find out let me know

[-] Sensitivezombie@lemmy.zip 11 points 1 year ago

This maybe a strange suggestion. Aside from the banking app, it seems like the maps and contacts app were used with good intentions to return the phone. The person returned the phone to your friend, so clearly had good intentions. Your friend may have the phone number of the person in their call log when they called to return, unless of course they used your phone to call. If possible, have you thought about calling that person and asking about this just out of curiosity?

[-] Dislodge3233@feddit.de 6 points 1 year ago

Yeah. It was clearly good will. Even the banking, they probably didn't realize the app was banking (foreign bank). Signal was Molly, so they honestly were personally confused since I run KISS Launcher.

The problem is that they used my phone to call my contacts.

[-] Cwilliams@beehaw.org 5 points 1 year ago* (last edited 1 year ago)

they honestly were personally confused because I run KISS launcher

This is what I think would happen if someone stole my laptop. Even if they got my password, they would need to figure out how to start sway, and then launch any useful application. I know there's no security in obscurity, but I think it would be pretty funny to see someone try

[-] CakeLancelot@lemmy.world 10 points 1 year ago

Does your phone have a physical SIM and if so are there any contacts stored on it?

[-] Dislodge3233@feddit.de 5 points 1 year ago

Yeah, but the calls were from my phone, so I think they would have to open it

[-] kamiheku@sopuli.xyz 8 points 1 year ago

They could've swapped the SIM to another phone though? Assuming you're rocking a provider default PIN

[-] null@slrpnk.net 5 points 1 year ago

But again, the calls were placed from his device, and other apps were accessed.

[-] YoorWeb@lemmy.world 10 points 1 year ago

Any chance the phone was stolen and not lost? Got anyone in the family working for the government or anything unusual like that. Just a thought.

[-] nix@merv.news 8 points 1 year ago* (last edited 1 year ago)

If someone calls you and theres a missed call notification can they just click it to call back without unlocking the phone?

Oh i didnt notice they went through other apps. Maybe they were watching you and saw you input your pin and then stole it and checked your stuff to see if they can get something useful and then returned it?

[-] SomeBoyo@feddit.de 5 points 1 year ago

Wouldn't a thief just factory reset and sell it, instead of taking the additional risk of returning it?

load more comments (2 replies)
[-] LUHG_HANI@lemmy.world 6 points 1 year ago

Maps and signal is like they were trying to contact somebody and see where you lived to return the phone. Banking is weird since you can't do anything without biometric anyway.

load more comments (3 replies)
[-] MxM111@kbin.social 6 points 1 year ago

Is it possible that something else was installed to the phone? If they manage to hack it open, then potential reason to return it to you is to spy on you.

load more comments (2 replies)
[-] Boomhower@lemmy.world 6 points 1 year ago

Ask the graphene devs.

[-] jet@hackertalks.com 2 points 1 year ago

Unrelated. Have you considered using a work profile?

That way you can have two factor authentication when unlocking your phone. You could use a PIN code for the main unlock, and a biometric for apps in the work profile. That way you would have to have both something you are, and something you know.

[-] Pantherina@feddit.de 3 points 1 year ago

How do you lock your work profile?

[-] jet@hackertalks.com 4 points 1 year ago

Settings, security, more security settings:

Under work profile and security:

Disable - use one lock for work profile and device screen

Configure - work profile lock, use a different code, only needed at boot time.

Enroll finger prints for biometric unlock.

load more comments (6 replies)
load more comments
view more: next ›
this post was submitted on 15 Dec 2023
126 points (98.5% liked)

Privacy

32506 readers
1251 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS