Related
Ok, maybe I'm in the wrong place. But here goes.
My phone is trying to send text to paid numbers behind my back. I'm using prepaid so it doesn't work. I get a "You have insufficient funds to send this text" message daily, at random times.
I have no pirated apps. Everything on my phone came straight from the market. However, I've not installed a single one of the apps that was on the recent list all over tech sites.
I'm planning on reflashing with a different rom and changing all the passwords that were stored on my phone.
BUT.
Before I do this, I want to find out which app is causing this behavior. Any Ideas on how to find out what is sending random text from my phone (they don't show up in the messaging app)
viogrep said:
Ok, maybe I'm in the wrong place. But here goes.
My phone is trying to send text to paid numbers behind my back. I'm using prepaid so it doesn't work. I get a "You have insufficient funds to send this text" message daily, at random times.
I have no pirated apps. Everything on my phone came straight from the market. However, I've not installed a single one of the apps that was on the recent list all over tech sites.
I'm planning on reflashing with a different rom and changing all the passwords that were stored on my phone.
BUT.
Before I do this, I want to find out which app is causing this behavior. Any Ideas on how to find out what is sending random text from my phone (they don't show up in the messaging app)
Click to expand...
Click to collapse
Install a android antivirus and firewall like Lookout.
Sent from my GingerBread Eris using XDA App
lookout finds nothing. All the other AV software fails to install. "Unknown error -18"
i have plenty of free space.
viogrep,
I wrote a novel, but then thought I should just ask a few preliminary questions:
Q1) does the error message contain any useful "hints", such as the destination number ?
Q2) if you use a logcat - capturing app, does anything show up in the logcat right around the time the message is generated which might provide some further clues?
There's a lot of different techniques you can use, but they require a bit of effort - not only to perform, but to explain, too.
Q3) Are you willing to post up the output of the "ps" command to a pastebin?
Q4) What apps on your phone request "SEND_SMS" privileges? You can find out with
Code:
strings /data/system/packages.xml > /sdcard/strings-pkgs-xml.txt
and then poking through the "strings-pkgs-xml.txt" file. When you see (for instance)
name="android.permission.SEND_SMS"
the immediately prior package is what requested it. Either that or you can do something tricky like
Code:
strings /data/system/packages.xml | awk '/<package name/{pkg=$2;}; /_SMS/{print pkg, $2;}'
bftb0
1. No destination number in the error. Sorry.
2. Also, no clues in logcat from what I've seen.
3. PS > http://pastebin.com/iUAfP9Yb
4. Besides the default gapps, the only other app with SEND_SMS priv. is Koxx Pure Messenger. (Purchased from the market, Have had for awhile, the sms sending is new)
Going to try to call my provider and see if I can get the number that's been denied because of funds.
*edit* No luck with provider.
I'd really like to know whats doing it so I don't install the same app once I flash. Luckily I keep nothing important on my phone. Its gmail account is actually a duplicate with my original forwarding to it. I'm a tiny bit overprotective over my email(address). :x
viogrep said:
4. Besides the default gapps, the only other app with SEND_SMS priv. is Koxx Pure Messenger. (Purchased from the market, Have had for awhile, the sms sending is new)
Click to expand...
Click to collapse
I know that it isn't necessarily this simple, but if that really is the only other app besides the GAPPs with SMS priveledges, especially coupled with the knowledge that the SMS capability is new, I think you have your answer.
If you tried a new ROM and restored all but that one app, and the problem never happens again then you can be 95% sure. Only way to be 100% sure is that after a certain length of time without a problem (a week?) you reinstall Koxx and then if the problem starts happening again.
I looked through your "ps" listing.
Didn't see anything too obvious sticking out at me; there were a couple of non-market apps running though. I know that there is no theoretical reason why non-market apps would be malicious - on the other hand, I sort of wonder why they are not on the market... you know what I mean? What is stopping them? (In the case of Tubemate - which was actually kicked off of Google's market, my suspicions are even higher. I realize it was not kicked off because of malware; but still...)
These were the only processes that were either not on my phone, or I didn't really recognize.
Code:
com.dylan.tube = [Non-Market App] Tubemate
com.gau.golauncherex.notification = GO Launcher EX (READ SMS)
com.levelup.beautifulwidgets = Beautiful Widgets (LevelUp)?
com.revsodev.volumecontrol = [Non-Market App] Volume Control (Cyrket?)
com.swype.android.inputmethod = Swype?
com.tencent.research.drop = QQPlayer (no perms req'd?)
net.bajawa.battery = BattStatt (no perms req'd?)
org.sipdroid.sipua = Sipdroid VoIP + video
The Road Warrior has an idea which is sort of useful; but I'll modify it to use binary division.
Start with a freshly installed, clean ROM, and only install half of your apps. (I would put all of your most frequently used apps in the first half, and delay any non-market apps as long as possible). Here's how this goes:
- if the "half" you put on the phone is trouble-free (long enough to know the SMS popup thing is not going on), then, install half of the remaining apps, and wait again to see if there is a problem.
- if the "half" you put on the phone develops trouble, then you know that the problem app is in that group. Wipe the phone and re-install all prior "halves" (that caused no trouble), but split the current half (the group containing the suspect app) in half, and only install that. Proceed in this fashion until you are down to the app which causes the trouble.
If you have 128 apps on your phone, and you wait 1 day between installations, it will take 7 days to find the malicious app. (And if you don't get a failure within the first two days, your phone will have 3/4s of it's apps installed - that's not too bad).
The thing is though, even if you had an app compromise your phone, it might not be an "app" that is doing the dirty work any longer. For example, the most recently discovered malware ran rooting exploits against the device, and once successful, downloaded and installed "other stuff". That "other stuff" could be native binaries. So, examining permissions in the system manifest doesn't necessarily guarantee that you have exhaustively looked at your phone, or discovered all possible means of interacting with the SMS system.
It might be "just an app", though - and if it were me, the first ones that I would suspect are non-Market apps, or apps that *cough* got downloaded from "freeware" sites.
Thanks for the responses. I actually did a fresh flash last night. First thing I installed was tubemate (running through non market apps) and it did it. Ironically I added some money to my account to see if I could get the number it was trying to text. Apparently it still couldn't go through.
Sent from my FroShedYo V10-ERIS using XDA App
I had a game from a Chinese developer that stole my gmail. Log into yours from the website and see if you get a red warning.
Sent from my GSBv1.9 ERIS using XDA App
viogrep said:
Thanks for the responses. I actually did a fresh flash last night. First thing I installed was tubemate (running through non market apps) and it did it. Ironically I added some money to my account to see if I could get the number it was trying to text. Apparently it still couldn't go through.
Sent from my FroShedYo V10-ERIS using XDA App
Click to expand...
Click to collapse
I'm always amazed when something I suggested actually works. LOL. It's just that I'm used to things being more complicated than I hope.
Glad you figured out the trouble!
Thanks bt and RW for the help.
As far as the gmail thing... I use a different gmail address on my phone with email forwarded (different pass)...
If it gets taken I just stop the forwarding and make a new one. Makes things a more simple. Sure, they can see past emails, but they cant request passes/info from other sites... (I also monitor the login IPs in gmail, religiously. Just a habbit.)
viogrep said:
Thanks bt and RW for the help.
As far as the gmail thing... I use a different gmail address on my phone with email forwarded (different pass)...
If it gets taken I just stop the forwarding and make a new one. Makes things a more simple. Sure, they can see past emails, but they cant request passes/info from other sites... (I also monitor the login IPs in gmail, religiously. Just a habbit.)
Click to expand...
Click to collapse
You're welcome. You could just change your password from the web if your phone gets stolen.
Especially since it's the gmail address you use on your phone that everything is sync'd to, not the one that's forwarding to it. So if you got another Android phone you'd lose all your contact info and bought and installed apps info, calendar and such. Unless you sync them manually which is so much harder in my experience.
Or you could use one of the many free apps out there that would let you remotely do many things to your phone. Turn the GPS on, triangulate your phone, make your phone scream, do a factory reset to erase everything...
Just a suggestion.
I'm on my third Android phone, and the last two are still "active" (?) in Google Play, on the website. With my first phone, I didn't have to "Choose which device to install on". Now I do, and I want to know how to get rid of the other two devices. I don't have access to them and never will again. I sent the first one to a dev on SDX, across the country. The other one I only had for six days, and traded for my current device. So, there's no reason for them to be up there. (Both were wiped before I got rid of them, so neither of them can even get into my Google account.)
P.S. Is there any way to get Google to forget I ever had an app? I've tried a bunch of apps that didn't work and I really don't like them in my "All" column under My Apps, in the phone app. But that's not as big a deal.
I think this will work
Open the Play Store from your PC
Go to Options (right upper corner, a gear icon) and select the option that appear.
Click on Devices tab, and untick the devices that you don't wish to see
About forget all downloaded apps... sorry, I dunno how do it
Please use the Q&A Forum for questions &
Read the Forum Rules Ref Posting
Moving to Q&A
Must be a way to do this.....
Sent from my GT-I9000 using Tapatalk
@RoberGalarga: That seems to have done it. Doesn't delete them but removes them as choices. Oh well. Thanks!
@lufc: Thanks for helping my topic find the right forum.
Sent from BlueStacks using Tapatalk
I wil confirm, after extensive past research that beyond hiding the device on play, you cannot remove it, or your previously downloaded apps from play.
It's really annoying and renders the my installed apps thing basically useless after a while...
I find it shocking that you cannot de-associate a device from your account. I wonder if there could be dangers of getting my apps to the next user of that device?
jrock2004 said:
I find it shocking that you cannot de-associate a device from your account. I wonder if there could be dangers of getting my apps to the next user of that device?
Click to expand...
Click to collapse
No your safe on that matter, as you should be doing a factory reset from within settings options before passing/selling it on.
I believe the reason Google do not allow you to remove devices is statistic based as they are able to make android seem more popular than it actually is by combining both active and inactive devices to increase its market share. (Just my opinion on the matter not an actual fact)..
Well, I did do the factory reset so the data is wiped. Thanks
jrock2004 said:
I find it shocking that you cannot de-associate a device from your account. I wonder if there could be dangers of getting my apps to the next user of that device?
Click to expand...
Click to collapse
None. They would need to sign into your Google account. Factory reset the device before passing it on and there will be no danger of that.
Sent from my Motorola Electrify using Tapatalk
I experienced device association issues when I tried to listen to the music I have linked with my Google Music account. To deactivate a device, go to play.google.com/music and select settings. Click settings and then it will allow you to "deactivate" devices.
Source: Google support
dstylazz said:
No your safe on that matter, as you should be doing a factory reset from within settings options before passing/selling it on.
I believe the reason Google do not allow you to remove devices is statistic based as they are able to make android seem more popular than it actually is by combining both active and inactive devices to increase its market share. (Just my opinion on the matter not an actual fact)..
Click to expand...
Click to collapse
If that's the case, it would seem I'm a great customer.
Trial&Errors when trying to fix market on my N7A2 left 11 inactive devices in my list, in addition to 2 phones I've sold long time ago, plus the active phone and tablet..
Find it a bit annoying having them there in the list, but atleast they can be unchecked so that they dont appear in the list when you install apps.
Even when you disable a device so it's no longer visible, it's just a matter of time until it comes back again. They don't stay hidden indefinitely
*************EDIT, this is no longer valid and hasn't been for a while. Google does not allow removal of devices from Google Play at least since 2014**********
I have been looking for a solution for this too.
Here's my findings:
1. if you still have your phone with you, delete the cache and data of Google Services Framework app (just as you do when trying to force an update check), and it will be gone. Of course you need to be signed in, otherwise it doesn't do anything. Yet, dont do anything with google play, otherwise the phone will be reappearing. Just reset it and forget it.
2. if you already got rid of the phone, simply wait 9 months (not one day more not one day less) since your last used date. I have verified and confirmed this time frame with 4 devices now. Took an extra week only for a tablet to disappear.
lellobello said:
I have been looking for a solution for this too.
Here's my findings:
1. if you still have your phone with you, delete the cache and data of Google Services Framework app (just as you do when trying to force an update check), and it will be gone. Of course you need to be signed in, otherwise it doesn't do anything. Yet, dont do anything with google play, otherwise the phone will be reappearing. Just reset it and forget it.
2. if you already got rid of the phone, simply wait 9 months (not one day more not one day less) since your last used date. I have verified and confirmed this time frame with 4 devices now. Took an extra week only for a tablet to disappear.
Click to expand...
Click to collapse
Great info. This actually saved a life...
lellobello said:
2. if you already got rid of the phone, simply wait 9 months (not one day more not one day less) since your last used date. I have verified and confirmed this time frame with 4 devices now. Took an extra week only for a tablet to disappear.
Click to expand...
Click to collapse
I believe you are right on the phones. However, on tables, I still see 3 tablets I tested after 3 weeks. On the tablet point do you mean 9 months and 1 week or only 1 week?
Booboo64 said:
I believe you are right on the phones. However, on tables, I still see 3 tablets I tested after 3 weeks. On the tablet point do you mean 9 months and 1 week or only 1 week?
Click to expand...
Click to collapse
He means 9 month and a week.
http://support.google.com/googleplay/bin/answer.py?hl=en&answer=2407656
It is not possible to completely delete devices listed under Settings on the Google Play website.
Hi, I'm still quite new to Android.
I tested the Galaxy Note 2 device today on a demo unit, and logged in with my gmail account to try out the features...
So is that device now stuck to my account forever?
AjunNg said:
Hi, I'm still quite new to Android.
I tested the Galaxy Note 2 device today on a demo unit, and logged in with my gmail account to try out the features...
So is that device now stuck to my account forever?
Click to expand...
Click to collapse
Same story here. Tested another S3 with my account. Now I have 2 S3's in my account.
Hello all
As someone handling sensitive information, I would like to investigate the security Android is dealing with.
First of all I got scared when I bought the app called SQLite Editor. It had all of my most vital passwords just stored in plain text. What I did immediately was a format of both internal and SD card as a reaction. However, I couldn't even find a feature to secure wipe the internal memory, while I've DBAN'd the SD card 7x.
So my thought was, I have to encrypt it. ICS seems to have a nice feature for that, however, it doesn't kind of work for me. I'm currently on cm-9.0.0-rc1-tinystream-hephappy-p500 (RC1-Rev.B). I went to Security in System Settings and touched "Encrypt Device". It gave some confirmations and I've accepted them however, now I'm kind of stuck on this screen.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
My first thought was "it is encrypting". But after hours of waiting, I wanted to check if it's done already. So I clicked the power-button once (just to unlock) and it asked for my password. I've entered it and it just went into my normal launcher. I've checked if anything had changed and no, my device has not been encrypted. Any logs somewhere? Any ideas what could have caused the problem?
Beside that, I asked myself the question "how secure is my Google account". As I am not planning to store any password to my device anymore, I am still connected to my Google account. I have DroidWall blocking all connections (except for my OpenVPN one).
Now my question is, what if my phone gets stolen. Does my SD-card contain any sensitive data, that's the first question. I am using LINK2SD to put everything on my SD card by the way. What security does Android use to connect to my Google account? If the thief turns on wifi and starts sniffing what data passes, what exactly would a hacker be able to sniff from me? Even then, my contacts contain valuable information. If my phone gets stolen, a hacker could simply steal all of my contacts, can't he?
Does someone have any idea to secure my phone? To connect to the internet I have OpenVPN working and blocking other connections with DroidWall. So the real case is, the data on my phone itself. Even if I use a anti-theft tool from the market and do a remote factory reset, the thief would still be able to use a datarecovery tool and so I would be screwed...
Another question: is it possible to combine a password lock and a slide lockscreen? As when I now enter my password and then put my phone in my pocket, it automaticly presses lots of things I don't want to press as there is no lockscreen for 30 minutes (I made the modification to the settings as my password is very long and I don't want to re-enter it each time). It would be perfect if a password lock would be on there to boot the phone (and even better to decrypt it) and every next time without rebooting the phone getting a patern unlock, that would be great.
So, if you can add anything usefull about securing or what security Android uses, please let me know.
Thank you very much
PS: One completely different question: does someone know why my phone boots when I plug it in to a charger? I don't like that, I want to charge without booting.
Encrypting the device will just make your device request a password each time you power it on. Since you securely erased your SD card (7x), it'll be somewhat difficult to recover those files. Just to be sure though, you could erase it using 35x (you may also want to defrag any files first). Your device connects to your Google account using a secure connection (more detailed here: https://developers.google.com/secure-data-connector/docs/1.3/security). If your contacts were synced with your Google account, it'll be ridiculously easy for anyone to access them (as long as your device is still linked to your account). So yes, a hacker could gain access (you wouldn't even need to be a hacker to do it; It's that simple).
This is quite a useful app to secure your device: https://play.google.com/store/apps/details?id=com.morrison.applock&hl=en. There are some methods to get around it, but you are able to prevent them from happening so it's still quite handy. If you remotely wipe your device, a "theif" may not be able to recover your data. Data recovery tools usually deal with external memory, so it'll be harder to recovery your device's internal data.
Yes, it is possible. If you set a password lock on your device and use some 3rd party screen lock, then you can use them at the same time. Remember you can also setup a SIM lock.
P.S: Does your device boot up fully or just to the battery charging icon? Does your device boot into recovery mode while attempting to charge it while off?
Thank you for your valuable reaction. According to what you say, Android actually doesn't care about security at all. I've just read that the Device Encryption isn't even 256-bit AES, but only 128. However, according to the link I can see that it actually uses some kind of VPN to connect to my Google account? If it is that secure, can I assume that my SQL Database of the Googel account also has extra encryption on it? And how far do you think that tunnel connection goes, does it also count for the GMail app or just for the basic Android connection? However, my contacts are indeed synced with my Google account. What do you suggest to do then? Noone should ever possibly get access to it. Let's say that I want to be as secure as that even the FBI or CIA won't be able to access it, any suggestions to accomplish that?
What I'm thinking about now is unlinking my Google account with my Android device (or even flashing a rom without Google Apps), but what would my phone make sense then? All of my contacts, numbers and more are stored on my Google profile, no other place. You also mentioned "so it'll be harder to recovery your device's internal data", from which I presume it is possible. Because I'm kind of paranoid because of what happened to me in the past, I hereby think that the only way to fix it is by encrypting the device. However, I can't get past that logo and a 3rd party app doesn't seem to do that kind of job (except for WhisperCore, which has been out of development since it has been bought by Twitter).
An interesting idea that I've just thought of is importing my contacts into Skype and then just always use the Skype app (combined with 3G). Skype always uses a 256-bit AES encryption and so it is secure for sure.
So, what do you think? Should I unlink my Google account with my Android device? Or should I just disable sync? Also, in my experience, there indeed always is a way to bypass an app locker (as easy as just removing the app, which can easily be done from recovery).
PS: It fully boots up. My previous version of CM9 booted to the battery charging icon, it's that that I want back.
Set a pattern unlock... it is FBI-proof as stated by CNET (if I've not mistaken)
And even amazon is using 128-bit... that isn't anything strange that Google isn't using 256-bit
Accidentally sent from my Google Nexus S
Yes it does use that connection (it wouldn't make sense to make it "open stream"). Your database files can be easily accessed from your device. The information will be secured in your Google account, but hackers can still find ways to access it (difficulty would depend on what you do). The tunnel connection goes for all your Google apps. Well if you're that paranoid, you'll probably want to remove your contacts from your Google account and disable sync.
If you do that, you will not be able to access any Google services from an app, your device will be missing important Google framework files, and you will not be able to download apps from the Play Store. Everything's possible .
Yes, you could do that. Keep in mind that the number of bits isn't necessarily important. See here: http://www.bestsslcertificates.com/articles11.html.
I would suggest disable sync.
P.S: Did you change your recovery since then?
melvinchng said:
Set a pattern unlock... it is FBI-proof as stated by CNET (if I've not mistaken)
And even amazon is using 128-bit... that isn't anything strange that Google isn't using 256-bit
Accidentally sent from my Google Nexus S
Click to expand...
Click to collapse
I am going to be honest, the first thing I did when I read this was laughing. But after some research, I saw you actually have a point. I've just read this: http://www.electricpig.co.uk/2012/0...roids-old-school-pattern-unlock-is-fbi-proof/
But then I ask myself, how hard can the FBI suck? If I'm right, you can just reboot into recovery and then access everything from there? Even disabling the pattern unlock from there is an option, no?
Beside that, what about encrypted messaging and encrypting calls. There are lots of apps available for that, but none except for Skype is stable and non-ugly at the same time.
Rakoen said:
I am going to be honest, the first thing I did when I read this was laughing. But after some research, I saw you actually have a point. I've just read this: http://www.electricpig.co.uk/2012/0...roids-old-school-pattern-unlock-is-fbi-proof/
But then I ask myself, how hard can the FBI suck? If I'm right, you can just reboot into recovery and then access everything from there? Even disabling the pattern unlock from there is an option, no?
Beside that, what about encrypted messaging and encrypting calls. There are lots of apps available for that, but none except for Skype is stable and non-ugly at the same time.
Click to expand...
Click to collapse
You can't change the setting in recovery, eg. Disable pattern unlock. It is a setting, unless you are just a little bit lucky, or else system will be corrupted
Accidentally sent from my Google Nexus S
Rakoen said:
I am going to be honest, the first thing I did when I read this was laughing. But after some research, I saw you actually have a point. I've just read this: http://www.electricpig.co.uk/2012/0...roids-old-school-pattern-unlock-is-fbi-proof/
But then I ask myself, how hard can the FBI suck? If I'm right, you can just reboot into recovery and then access everything from there? Even disabling the pattern unlock from there is an option, no?
Beside that, what about encrypted messaging and encrypting calls. There are lots of apps available for that, but none except for Skype is stable and non-ugly at the same time.
Click to expand...
Click to collapse
You could "encrypt" your messages and calls with an app locker (make "settings" be a locked app so it cannot be uninstalled). No, the pattern unlock cannot be disabled via recovery. You can access many things from recovery, but not like that. The only way they could know your pattern would be by finger markings (which you could wipe away or get a fingerprint resistant screen; unless your device is one of those which can be bypassed with key combinations).
Theonew said:
Yes it does use that connection (it wouldn't make sense to make it "open stream"). Your database files can be easily accessed from your device. The information will be secured in your Google account, but hackers can still find ways to access it (difficulty would depend on what you do). The tunnel connection goes for all your Google apps. Well if you're that paranoid, you'll probably want to remove your contacts from your Google account and disable sync.
If you do that, you will not be able to access any Google services from an app, your device will be missing important Google framework files, and you will not be able to download apps from the Play Store. Everything's possible .
Yes, you could do that. Keep in mind that the number of bits isn't necessarily important. See here: http://www.bestsslcertificates.com/articles11.html.
I would suggest disable sync.
P.S: Did you change your recovery since then?
Click to expand...
Click to collapse
There must be a solution for this, without having to remove the complete Google framework. But indeed, I am that paranoid. Nothing may lead to any personal file I have. However, you also mentioned "removing contacts from my Google account". Why would that be necessary? Google doesn't even give the FBI access to my account so why wouldn't it be secure? What I'm thinking off now is syncing my Google account with my Android device. Then unlinking it and then encrypting the contacts, just the contacts. Then I did sync, I did unlink and did encrypt. Wouldn't that make it impossible for enyone on the entire world to access anything from me?
Google services are not important for me, that "important framework files" don't sound important enough to me and the Google Play store... I don't care about it. Enough APK's around. Security first.
You are reminding me that the bits aren't important, while that's true, I want to remind you that secure deletion of 35x isn't that important too. 7x is more than enough if you choose a powerfull PNG stream.
Theonew said:
You could "encrypt" your messages and calls with an app locker (make "settings" be a locked app so it cannot be uninstalled). No, the pattern unlock cannot be disabled via recovery. You can access many things from recovery, but not like that. The only way they could know your pattern would be by finger markings (which you could wipe away or get a fingerprint resistant screen; unless your device is one of those which can be bypassed with key combinations).
Click to expand...
Click to collapse
Well, I actually was thinking like "why would you even neet to unlock the device". As far as I know, something as a pattern lockscreen doens't encrypt/decrypt anything except for your launcher, which is not a necessary product. I mean, you say "you can access many things from recovery", doesn't this include like every important files? Aren't databases accessible and so also contacts or messages?
However, about the encrypted calls and messages I actually mean off the record things. Like TextSecure do.
Rakoen said:
There must be a solution for this, without having to remove the complete Google framework. But indeed, I am that paranoid. Nothing may lead to any personal file I have. However, you also mentioned "removing contacts from my Google account". Why would that be necessary? Google doesn't even give the FBI access to my account so why wouldn't it be secure? What I'm thinking off now is syncing my Google account with my Android device. Then unlinking it and then encrypting the contacts, just the contacts. Then I did sync, I did unlink and did encrypt. Wouldn't that make it impossible for enyone on the entire world to access anything from me?
Google services are not important for me, that "important framework files" don't sound important enough to me and the Google Play store... I don't care about it. Enough APK's around. Security first.
You are reminding me that the bits aren't important, while that's true, I want to remind you that secure deletion of 35x isn't that important too. 7x is more than enough if you choose a powerfull PNG stream.
Click to expand...
Click to collapse
About the Google framework files, you may want to take a look here: http://forum.xda-developers.com/showthread.php?t=1715375. That could be necessary to prevent hackers from getting to them. Yes, unless your data was still left on Google servers (in your account) and hackers got to it.
Yes, but some powerful undelete and data recovery softwares can still recovery data deleted using 7x (especially if the files were fragmented).
Rakoen said:
Well, I actually was thinking like "why would you even neet to unlock the device". As far as I know, something as a pattern lockscreen doens't encrypt/decrypt anything except for your launcher, which is not a necessary product. I mean, you say "you can access many things from recovery", doesn't this include like every important files? Aren't databases accessible and so also contacts or messages?
However, about the encrypted calls and messages I actually mean off the record things. Like TextSecure do.
Click to expand...
Click to collapse
You can use 3rd party apps to set pattern unlock for other apps. Partly, but not quite. In recovery, you can access /data (where all your data is stored), but only to backup that partition (unless you made a previous backup which would also allow you to "restore"). You can't access the files like being able to view them (unless you are using Aroma file manager, but you still won't access those files). Databases, contacts, and messages are not accessible (unless you backed them up to your SDcard - they still wouldn't be readable though).
Rakoen said:
Well, I actually was thinking like "why would you even neet to unlock the device". As far as I know, something as a pattern lockscreen doens't encrypt/decrypt anything except for your launcher, which is not a necessary product. I mean, you say "you can access many things from recovery", doesn't this include like every important files? Aren't databases accessible and so also contacts or messages?
However, about the encrypted calls and messages I actually mean off the record things. Like TextSecure do.
Click to expand...
Click to collapse
This topic is getting more and more interesting.
In the other hand, IF you're having pure Google Device with build in memory, people cant access your storage (built in memory) without entering a pattern or etc
Accidentally sent from my Google Nexus S
Theonew said:
About the Google framework files, you may want to take a look here: http://forum.xda-developers.com/showthread.php?t=1715375. That could be necessary to prevent hackers from getting to them. Yes, unless your data was still left on Google servers (in your account) and hackers got to it.
Yes, but some powerful undelete and data recovery softwares can still recovery data deleted using 7x (especially if the files were fragmented).
You can use 3rd party apps to set pattern unlock for other apps. Partly, but not quite. In recovery, you can access /data (where all your data is stored), but only to backup that partition (unless you made a previous backup which would also allow you to "restore"). You can't access the files like being able to view them (unless you are using Aroma file manager, but you still won't access those files). Databases, contacts, and messages are not accessible (unless you backed them up to your SDcard - they still wouldn't be readable though).
Click to expand...
Click to collapse
The 7x note is not correct for 100%. The way that I overwrite data won't make it possible to recover anything at 7x, not even using powerful undelete or data recovery software. Even if you're a professional, it will be very hard to get back any data. I have experience in this sector, so I know where I'm talking about on this part.
However, what you just said about the pattern unlock is almost unbelievable. Doesn't this simply solve everything? I mean, why would anyone ever use the Android Device Encryption in ICS if there is something as a pattern unlock? Why would it make sense to use AES 128-bit when you can't even access it without the encryption?
So it wouldn't even make sense to unlink my Google account, would it? It isn't accessible you say, so why whould it be any concern? If the FBI isn't able to break behind the pattern unlock, who would be? You first said that a hacker can easily get access to any sensitive data if I sync my Google account, but why should it? Even without OpenVPN, it uses a VPN encryption for every Google App ... so Android is the best in security, I was wrong?
melvinchng said:
This topic is getting more and more interesting.
In the other hand, IF you're having pure Google Device with build in memory, people cant access your storage (built in memory) without entering a pattern or etc
Accidentally sent from my Google Nexus S
Click to expand...
Click to collapse
You are very right on that. It really is getting interesting. Your "IF" makes me wonder what exactly you mean. As I have a LG Optimus One (P500) with custom rom, custom recovery and custom radio. Does it make any difference here?
Rakoen said:
You are very right on that. It really is getting interesting. Your "IF" makes me wonder what exactly you mean. As I have a LG Optimus One (P500) with custom rom, custom recovery and custom radio. Does it make any difference here?
Click to expand...
Click to collapse
You can't access your storage WITHOUT entering the pattern in stock device. IF you're in stock and wanted to root, both system and internal SD will be wiped (a factory reset will be made). So no data will be left
Device: nexus s, galaxy nexus, nexus 7
Accidentally sent from my Google Nexus S
And regarding to the security, Google released an app that helps you to monitor which app is requesting what permission. You can even set which permission is deny so that you can't install the app and highly "dangerous" app will be kept away from your device.
Accidentally sent from my Google Nexus S
Rakoen said:
The 7x note is not correct for 100%. The way that I overwrite data won't make it possible to recover anything at 7x, not even using powerful undelete or data recovery software. Even if you're a professional, it will be very hard to get back any data. I have experience in this sector, so I know where I'm talking about on this part.
However, what you just said about the pattern unlock is almost unbelievable. Doesn't this simply solve everything? I mean, why would anyone ever use the Android Device Encryption in ICS if there is something as a pattern unlock? Why would it make sense to use AES 128-bit when you can't even access it without the encryption?
So it wouldn't even make sense to unlink my Google account, would it? It isn't accessible you say, so why whould it be any concern? If the FBI isn't able to break behind the pattern unlock, who would be? You first said that a hacker can easily get access to any sensitive data if I sync my Google account, but why should it? Even without OpenVPN, it uses a VPN encryption for every Google App ... so Android is the best in security, I was wrong?
Click to expand...
Click to collapse
Not necessarily. If someone knows your pattern unlock, they could unlock your device. Or even people standing behind you could see it. Someone may use it if another person knows their unlock pattern (but wouldn't know the code).
If USB debugging is enabled, someone could access your databases, etc. over adb. You wouldn't need to sync your Google account - your device would do that automatically (unless you disabled sync which is what I suggested).
melvinchng said:
You can't access your storage WITHOUT entering the pattern in stock device. IF you're in stock and wanted to root, both system and internal SD will be wiped (a factory reset will be made). So no data will be left
Device: nexus s, galaxy nexus, nexus 7
Accidentally sent from my Google Nexus S
Click to expand...
Click to collapse
That's a true thing you say there. But however, it doesn't apply in my situation. I currently am on a rooted device that not even is a nexus (LG Optimus One P500)... so how does it make sense in my case?
melvinchng said:
And regarding to the security, Google released an app that helps you to monitor which app is requesting what permission. You can even set which permission is deny so that you can't install the app and highly "dangerous" app will be kept away from your device.
Accidentally sent from my Google Nexus S
Click to expand...
Click to collapse
I've blocked all connections using DroidWall, so it would be impossible to upload anything personal to an intruder. Beside that, I use my own way of scanning apps and so I do know if I'm secure on that matter. However, thanks for letting me know there is an app for that.
However, I'm not concerned about that kind of security (I am protected against any kind of virusses or malware), my concern is about sniffers and more importantly thiefs that are great hackers (which in my case are around the corner).
Theonew said:
Not necessarily. If someone knows your pattern unlock, they could unlock your device. Or even people standing behind you could see it. Someone may use it if another person knows their unlock pattern (but wouldn't know the code).
If USB debugging is enabled, someone could access your databases, etc. over adb. You wouldn't need to sync your Google account - your device would do that automatically (unless you disabled sync which is what I suggested).
Click to expand...
Click to collapse
Disable visible pattern and use two steps verification for Gmail.
Google search for it, 2 steps verification for Gmail.
Even thought someone has your Gmail account AND password, they still aren't able to log in into your mail... and the password that you use to log in in your Android device IS different from the normal one AND the password has to renew monthly..
Google really put a lot of hard work on solving those problem that you mentioned. Try out those things that Google has made
Accidentally sent from my Google Nexus S
Theonew said:
Not necessarily. If someone knows your pattern unlock, they could unlock your device. Or even people standing behind you could see it. Someone may use it if another person knows their unlock pattern (but wouldn't know the code).
If USB debugging is enabled, someone could access your databases, etc. over adb. You wouldn't need to sync your Google account - your device would do that automatically (unless you disabled sync which is what I suggested).
Click to expand...
Click to collapse
Well, then I'm going to create a pattern unlock as strong that it's impossible to follow, even if the person is standing beside me and looking at it. I'm also not planning to show it to anyone and will look around if there are cameras every time I unlock (yes, I am paranoid, but with reason).
I thought exactly the same about USB debugging and so I disabled it. I don't understand what you are trying to say with the sync. Why would I want to disable it? What would it add as security?
And it seems like I skipped this:
Theonew said:
P.S: Did you change your recovery since then?
Click to expand...
Click to collapse
No, I haven't change my recovery since a long time.
Rakoen said:
That's a true thing you say there. But however, it doesn't apply in my situation. I currently am on a rooted device that not even is a nexus (LG Optimus One P500)... so how does it make sense in my case?
I've blocked all connections using DroidWall, so it would be impossible to upload anything personal to an intruder. Beside that, I use my own way of scanning apps and so I do know if I'm secure on that matter. However, thanks for letting me know there is an app for that.
However, I'm not concerned about that kind of security (I am protected against any kind of virusses or malware), my concern is about sniffers and more importantly thiefs that are great hackers (which in my case are around the corner).
Click to expand...
Click to collapse
Can you let us know what is your job / what does your phone contains / what is most of them...
And actually, there is an Chinese app, 360 Strong Box, and what it does is exactly what you want. It is a software made by 360 company, the app can convert image / video / documents and data into a file that can only be access by using the 360 strongbox... you don't have to worry about the security, 360 is one of the largest Chinese security company that provides antivirus or anti spyware on different platform, windows, android, symbian, iOS etc.
UNFORTUNATELY, it is in Chinese language and the company signed it in private, so I couldn't compile and recompile it and make a translation.
Request from the company for the English translation. I can help them to translate if they're willing to release a copy of English version. The translation is about 400 lines only, a short app.
Accidentally sent from my Google Nexus S
Had my damn phone stolen, some prats smashed my window through and took everything. I've tried installing all of those tracking apps, but it seems my phones either constantly turned off, or has been wiped.
But I've had another idea! One day they are bound to use my phone, and set up another google account with it. I was wondering, is there anyway that I could find out what google account they use?
Thanks
kylepsp said:
Had my damn phone stolen, some prats smashed my window through and took everything. I've tried installing all of those tracking apps, but it seems my phones either constantly turned off, or has been wiped.
But I've had another idea! One day they are bound to use my phone, and set up another google account with it. I was wondering, is there anyway that I could find out what google account they use?
Thanks
Click to expand...
Click to collapse
if US Government ask them via PRISM then without any problem, but when John Doe ask answer is always the same - NOT POSSIBLE
For the longest time, possibly since buying the phone, I felt my phone has ghost vibrations. Eventually I decided to install a notification logger. I then realized that for some reason Download Manager is downloading an image, and it's always the same image. I don't know where it's downloading it from, but I copied the image filename and pasted it into my Google photos and turns out it's a photo of my ID.
Now I'm really scared that there may be spyware on my device.. Is there a way to find out who is calling Download Manager or from where the file is being downloaded?
Have you try to fully reset your phone?
Sh!t, I would factory default in a heartbeat and carefully look at the apps I reinstall, especially those with "access to photos" permissions. This is serious.
That being said, it's an Android phone by Huawei, so yes, you are spied on both by Google and Huawei
I think US politics against Huawei and general fear mongering is getting out of control. If people are that paranoid about big-brother then stop using tech, coincidentally the only proven and factual case of spying and massive over-reach has been the US government, not China.
enrique71 said:
I think US politics against Huawei and general fear mongering is getting out of control. If people are that paranoid about big-brother then stop using tech, coincidentally the only proven and factual case of spying and massive over-reach has been the US government, not China.
Click to expand...
Click to collapse
Chill....that was a joke if you notice that emoji.
enrique71 said:
I think US politics against Huawei and general fear mongering is getting out of control. If people are that paranoid about big-brother then stop using tech, coincidentally the only proven and factual case of spying and massive over-reach has been the US government, not China.
Click to expand...
Click to collapse
I think a Huawei employee stole some testing robot from T-Mobile. LOL or allegedly did.
TheAddict94 said:
For the longest time, possibly since buying the phone, I felt my phone has ghost vibrations. Eventually I decided to install a notification logger. I then realized that for some reason Download Manager is downloading an image, and it's always the same image. I don't know where it's downloading it from, but I copied the image filename and pasted it into my Google photos and turns out it's a photo of my ID.
Now I'm really scared that there may be spyware on my device.. Is there a way to find out who is calling Download Manager or from where the file is being downloaded?
Click to expand...
Click to collapse
Google, Huawei, Samsung, wat ever brand, know you better than ur parent, especially Google, it know where u work, where u eat, where u sleep, what road u took ... you name it.
These make me think of movie "Terminator", may be one day Google is Skynet
.
I got ghost vibrations as well it starten when 8 downloaded an GIF
Where do you think Huawei got a copy of your ID from? Do you think your phone went into your wallet while you were asleep and stole it? And after stealing your ID why would Huawei want to download it onto your phone?
The spyware you suggest sounds both increadibly sophisticated and amazingly stupid.
If you actually are seeing anything remotely similar to what you describe it is likely activity by a third party app you installed and that you gave a copy of your ID to.
Huawei Wallet is the only Huawei App I know of that might store a copy of your ID but you would actually need to provide a copy of it first.
I don't think is spyware either. In my case I have OneDrive syncing some files (mostly personal stuff), so what I see in a notification logger is exactly as you describe: Download Manager downloading randomly downloading some files to your device.
There are 'phantom notifications' happening on a regular basis. They disappear before your very eyes. I think they are all Huawei subsystem actions that somehow trigger a notification but not fully... What the OP is claiming is pretty insane, though. Can you clarify? At some point in time, you had to have used your phone to take a picture of your ID - right? I mean, the camera didn't do that by itself. Was it a banking app? Was it trying to buy bitcoins? Was it applying for your porn permit in the U.K.? Was it your dissasociative schizoid fragmented personality betraying you again? Are you the anomaly? Do you live at the CERN facility? Did Dolly wear braces in Moonraker in the timeline where your picture ID was taken?
Okay, I've made some progress with trying to figure out the culprit. It's somehow related to Google Photos. I never downloaded any photos except that one (the photo was taken on a different device and I used the download option to keep it on my device for a banking app).
I uninstalled the banking app and disabled GPhotos (can't uninstall it), the issue persisted. I was worried because it was my ID and I assigned malicious intent to some unknown third party. I've re-enabled GPhotos.
Now, I've downloaded two more photos, this time just food pics. And now I get three times the ghost notifications. One for the ID, and two for the food.
Good news - it's likely not malicious intent.
Bad news - it's somehow related to Google Photos and/or Huawei. It's a bug that still occurred after I disabled both the download manager (it enabled itself) and Google Photos (it didn't enable itself, and even with clean data the issue occurred).
TheAddict94 said:
Okay, I've made some progress with trying to figure out the culprit. It's somehow related to Google Photos. I never downloaded any photos except that one (the photo was taken on a different device and I used the download option to keep it on my device for a banking app).
I uninstalled the banking app and disabled GPhotos (can't uninstall it), the issue persisted. I was worried because it was my ID and I assigned malicious intent to some unknown third party. I've re-enabled GPhotos.
Now, I've downloaded two more photos, this time just food pics. And now I get three times the ghost notifications. One for the ID, and two for the food.
Good news - it's likely not malicious intent.
Bad news - it's somehow related to Google Photos and/or Huawei. It's a bug that still occurred after I disabled both the download manager (it enabled itself) and Google Photos (it didn't enable itself, and even with clean data the issue occurred).
Click to expand...
Click to collapse
I have exactly the same, some how download manager service kills and restart and b8ving the ghost notifications
Yeah it's called Huawei ID, login and let it upload all your contacts and messages to a Chinese server. ?
Sent from my HUAWEI LYA-L09 using XDA Labs
Darkat70 said:
Yeah it's called Huawei ID, login and let it upload all your contacts and messages to a Chinese server. ?
Click to expand...
Click to collapse
How is it differ from Google backup?
BTW, if you don't want Huawei ID, get the Canadian version. It was disabled.
Amowagou said:
How is it differ from Google backup?
BTW, if you don't want Huawei ID, get the Canadian version. It was disabled.
Click to expand...
Click to collapse
LoL not much really, Google are probably worse.
Sent from my HUAWEI LYA-L09 using XDA Labs
Darkat70 said:
LoL not much really, Google are probably worse.
Click to expand...
Click to collapse
Yeah, no.
I too am certain my mate 20 Pro is spying on me, it randomly says call ended even when iv not been in a call. I don't have any control of weather 'hey google' is active when the screen is dark, the option is greyed out in the off position but my phone regularly lights up from dark into Google assistant when nobody in the room said ’hey google’ or anything like it. I also cannot delete or retrain my voice pattern. Both options that should normally be buttons are no longer clickable links.
Stickybudd said:
I too am certain my mate 20 Pro is spying on me, it randomly says call ended even when iv not been in a call. I don't have any control of weather 'hey google' is active when the screen is dark, the option is greyed out in the off position but my phone regularly lights up from dark into Google assistant when nobody in the room said ’hey google’ or anything like it. I also cannot delete or retrain my voice pattern. Both options that should normally be buttons are no longer clickable links.
Click to expand...
Click to collapse
Seems like there's something horribly wrong with your device. Maybe you should do a factory reset
ChongoDroid said:
Yeah, no.
Click to expand...
Click to collapse
Eerr Yes
Google Maps Timeline, where you have been, how long you were there, Google Opinion Rewards, I visited McDonald's the next day I got a survey asking which restaurant I'd been to which had McDonald's as an answer, this has happened when I parked outside JB hi-fi and other locations too.
Then there's Google assistant listening to what we do, which they probably analysis just like Alexa
https://www.news.com.au/technology/...u/news-story/d1fc9557a03909f9b845fb9003434e22
So tell me that Google are not big brother, watching our every move.
Sent from my HUAWEI LYA-L09 using XDA Labs