Now I'm starting to believe that the no removable battery was to prevent turning your phone off definitely

I remember when a "hardware kill switch" was just called a "Power off" button...

Anyone who's worked in the ITsec field will know of a thing called the "Security, Functionality, Usability triangle." You can't have a perfectly secure device without sacrificing functionality or usability. That's why I'm not surprised that Apple prioritizes functionality and usability over security with certain features. Stuff like having the "Apple Wallet" Express Card feature work on low battery or while the phone is off. Leaving the radios on so the "Find my" feature works no matter if the phone is on or not. It's way more convenient for the user to be able to use those features unimpeded without having to worry about if the battery still has a charge, or if the phone itself is still on. I'll admit, I'm one of those users that benefits from a such a setup, since I'm the forgetful type that loses things rather easily. It would be a massive hindrance in the event I misplaced my phone, switched off my phone's radios, and forgot to charge it all at once. I wouldn't ever be able to find that phone until several months into the future. Still though, I believe that phone manufacturers should be more willing to cater to the crowd who's willing to sacrifice functionality and usability for security. Even a nag message like "this will hinder x functionality" but allow you to configure your phone accordingly would be a huge boon for the security conscious. "Why not have both?"

I'll just say that I lived a way happier and blissful life before discovering your channel. Now I feel the urge to wrap tinfoil around my head.

Yeah but to be fair if a hacker has physical access to your device and knows what they are doing, you're pretty much fricked no matter what

0:29 actually they didn't refuse to decrypt it. They were asked to add a system to every iphone so that the fbi (or whoever asked them, I dont remember) can decrypt them easier. They refused as this would also help hackers decrypt the phones. If I remember correctly in the end those guys decrypted the phone themselves (brute force or something) and didn't found anything usefull

For the Apple + Security fans out there. A good practice might be to actually pry open the iPhone and take the battery out before doing your top secret work. The laws of physics can’t be broken :)

This is a great summary of why smartphones are fundamentally untrustworthy devices. Untrustworthy things, like untrustworthy people, can still be valuable and useful. You just need to keep in mind what your risks are and organize your life accordingly.

I have just stopped using a smartphone altogether. The only thing I really miss is able to make hotspots for my laptop on the go.

This was a concept of malware/tracking/hack that had Snowden literally shit bricks for years. And yet again like so many times before he was spot on before any mainstream security professionals were even considering this to be an option.

Side note, you can use 911 pretty much everywhere, same with 999, 112 etc, as it’s best for everyone that even if countries can’t agree or be bothered to standardised emergency numbers, that anyone can get the urgent help or assistance needed

Also, the thing about "Find My" or it's Android equivalent is that they're provided by Apple and Google. If there were an open source version of this feature I'd switch in a heartbeat. I kinda need this feature because where I live there's a chance you might get mugged by two guys on a motorcycle at night. And I wanna have the ability to wipe/factory reset my cellphone remotely for that reason.

Can you imagine if there were a Linux phone that was not spyware but was actually designed for the user? Then you wouldn't need a tinfoil hat, a Faraday cage or a Faraday suit to be secure.

"the age of the wired headphones has basically gone extinct" I'm never going to buy a phone without a headphone jack. Ever.

You can turn off the Find My radio signals when you turn your phone off by putting in your password before you shutdown or by turning it off in Settings. That way you won't need an anti-RF bag and the radio signals won't be transmitted.

Fbi: "decrypt this known terrorists phone" Apple: "no" **puts on sunglasses and walks out then blows up the building behind them while walking towards the camera in slow motion**

all im hearing is, we can jailbreak your iPhone using a bluetooth insecurity of the hardware, however it can only be done to the phone you own cause we gotta upload some binaries as an active user. Hey, this sounds like a great idea, maybe GeoH0t will make a blackrain 13.0 or something.

Hey man love your channel just wanted to let you know your vids are super helpful and entertaining

Jokes on you, Samsung sometimes delivers Security Patches faster than Google itsself and never lags behind.

Same thing applies for MacBooks by the way. Even while they are "sleeping", the wifi module is still active and transmitting data on the local network.

No matter what, if you’re online in any way via hard-wire or wireless communication, your data is being exposed to some degree. I guarantee most, if not all Android phones stay on even while powered off as well. Just go with whatever platform you like most. Your data is never safe as long as you’re interacting with any other computer, simple as. If you want a piece of information truly secure, pen and paper are your best bet.

A couple of words on bluetooth still operating when the device is turned off: This "only" applies if bluetooth hasn't been disabled when the device was shut down (I'm talking about completely turning it off in your system settings not via the control center because that could also be accessed when the device is locked). And even with BT enabled you can tap on that little "iPhone Is Findable" text when turning your iPhone off and tell it to opt out of the Find My network. And if you wanna do so you can also permanently opt out of the Find My network in the devices settings.

I mean a hardware kill switch could be marketed as a convenient way to toggle off calls/notifications and people would possibly buy it for that. Maybe also include battery saving statistics. (Although I don't see Apple attempting this)

iPhones being seen as "more secure" is a misconception. The walled garden only improves security if you would otherwise sideload sketchy apps, which you shouldn't do on any device. Android allowing more user control is actually a good thing, for example you can install hardened ROMs like GrapheneOS that have buffer overflow countermeasures.

I bought a new iphone a few months ago and then soon after I ended up finding your channel and learning more about security. Kind of wish I held back on buying a new phone until after that :(

have to ever turned off every background activity option on iphone and noticed it still pings back home to apple every 2 minutes to be almost exact ? I don't know but not even an Android phone with every Google service turned on does that. Pretty spooky if you ask me.

I love the part about where he mentions the lack of the mini jack port on recent phones and then shows high end Focal headphones that no one would directly use on a phone jack.

I gonna need that Faraday cage aren’t I?

I hope that the _Open App Markets Act_ passes and forces Apple to allow sideloading on iOS.

Bruh it's 2022 who still uses a iphone lmao Us people that uses Flip phones ARE FAR MORE SUPERIOR IN THIS HUMAN RACE !!!!!!

I think you actually work for the aluminum lobby. Trying to get us to make hats.

Listened to this video with wired headphones on my phone. Always find constantly recharging Bluetooth earbuds to be annoying, especially when you fire them up and get a battery low warning five minutes later.

many years back when I had an iphone I always turned the "find my phone" thing off because its very nature spooked me

Btw you can disable it forever, easily from settings

Sorry Apple I will continue to use my insecure android phone 🤣

Please note, when you shut down it will give the option "temporarily turn off finding" and afaik this does completely disable any active-radio usage. If you really can't trust it beyond that, you're looking for a different type of phone. Apple builds phones for average consumers - people who are more afraid of losing the phone than of it being compromised. The pros/cons are up to you as the purchaser. Personally I like the "always findable" aspect of my phone and assume if I have it my location is probably tracked one way or another - plus there are plenty of ways to do surveillance that don't even need a phone lol (ugh ring doorbell go away) just note that unless Apple has a custom tweak in the OS for your device in particular (in which case it's always been possible to "pretend to shut down") we at repair shops can tell when radios are/aren't active - when you connect to a bench supply there is a significant difference when you switch things like airplane mode, power off, etc. and it's part of how we test certain components like Tristar for faults. I can assure you that from my personal experience when the radios are switched off they are actually off barring any exploits (which have always been theoretically possible - nothing special about malware altering UI on new vs old iphones)

Headphone jack is the exact reason why i bought a pixel 5a instead of a 6.

"graphene and calyx are supported on many devices" you mean many and exclusively pixel devices?

"android is privacy by default" MIUI: haha spy ads go brrr

I normally just get the Google Pixel and just use a custom ROM that is privacy-focused

How about we start the tradition of manually modding in an easily-accessible hardware killswitch into the wires for our phone batteries? Phone battery connectors are trivial, sporting only positive and negative power cables most of the time. I doubt most current designs have any countermeasures prepared for that yet, considering how standard non-user-removable batteries are by now, and how modding extra hardware killswitches into a device is not a thing. But we could start making it a thing... And if Right to Repair passes, corporations wouldn't be allowed to kill the battery management system when the battery is disconnected as well, something that phones don't do right now, but could in the future if modding battery killswitches became a thing.

That's amazing! If you ever lose your phone you don't have to worry about it turning off.

For real this chanel is so educational and fun, thanks my dude for the vidz

The thing about Bluetooth is that even if you "switch it off" in the settings, it will still be scanning for other devices. The only thing that is disabled is the pairing functionality.

I have noticed that Siri started to ask to unlock the device in order to turn off Bluetooth. I think it wasn’t one or two versions back.

holy shit. this is like a hackers dream zeroday. one that cannot be fixed.

That's why my "privacy phone" is an Galaxy S5 Neo with Android 11 GSI without Google Services and other useless bloatware. And the best thing is that it's easy to repair and I can swap the fcking battery without any tools!!! But wait, isn't the phone sustainable to liquid damages? Not really... I accidently forgot my S5 in the jacket, it was in washing machine for 1 hour and 20min (Eco Washing Program 40*c) and it survived. It's really sad to think that modern, flagship phones don't allow you to easily swap the battery. I even carry a second battery in case the other one is reporting 5% charge and I still need to use my phone. NFC Entry still works on this phone via a 3rd party NFC Tag Emulator which is also blocked via firewall

with the payment thing you should keep one thing in mind. "This feature isn’t available when a standard user-initiated shutdown is performed."

Can the Pinephone or Librum 5 have encrypted and signatured Bluetooth? I'd imagine adding small security roadblocks in that department wherm it might not exist would not be that difficult(?).

I thing Louis Rossmann or some other tech youtuber pointed out that the only way for your phone to not be traced is if the battery is completely disconnected. And any possible backup power. If the device has no power access it cant communicate

Every time I think about it I'm more convinced that my Redmi 9 was a smart purchase. Relatively durable and powerful, pretty good battery life after 2 years, and lastly, a headphone jack.

Thanks for making me aware of these anti RF bags. I had no idea there was a thing like that. I’ll have to pick one up. Kudos.

1:12 Well, as far as I can tell, Samsung and Sony are rather decent compared to other Android manufacturers when it comes to security updates. Cheaper phones, especially those produced in China, don't receive updates as regularly and/or as long.

You know, they could easily turn the mute toggle into a killswitch when it's turned off. They won't do it, but the option is right there.

Using CrDroid right now, it is really good, best rom i tried out in 2 years time

0:08 that program on the monitor looked to me like FL Studio at first glance and I thought they were sitting around in a server room, in dim light, making fire beats together

From power off to radio kill switch , what a long way we have come

Remember when phones had easily removable batteries? Sigh...I still use one, obviously it's not my daily driver but I use my xperia play for emulators since it has a neat built-in controller. It can't do much beyond DS/PS1 level but that's still a massive library of games playable on a less than 5in long device in my pocket ;)

SIM isn't for that. SIM cards are chips that hold information and allow you to connect with your network. This means you can make calls, send SMS messages and connect to mobile internet services like 3G, 4G, and 5G. They're also transferable and you can choose to save messages, contacts, and emails to them.

Man, people call iPhones secure. They don't know that iOS is closed source while android is open source.

Skill issue lol

Meh. Anyone who gives money to Apple doesn't deserve any privacy

Google has a find my device function too. Try it, you might find it to be similar to find my iPhone in some ways.

I felt most secure when I used to use a burner and switch numbers and account every month or two but then I realized they could just figure me out within a few days by who I was talking texting and calling

Fuck I can hear Satania laughing at me now (only true chads know the reference)

Time to get a Pinephone64 it actually has hardware switches....and actually runns linux.

You can custom rom iPhones though. But it will void the warranty of the device.

I literally keep a phone with battery discharged and only charge it when I know I will be needing it for a trip.

more appealing than what, android has also google's find my android, lol

Another reason we need laws *requiring* mobile devices have a hardware power switch, especially in ones which don't have a user removable battery.

Newer Androids with both LG and Google ... Require you to enter the screen lock to shut down or reboot

Just remember that using a RF blocking bag won't solve the problem, as the device will increase it's broadcast power levels until a connection has been established, and beyond certain power level the signal will make it's way to the cell tower eventually, so those shields and bags won't do hole lot. (It will also do this while the device is off just, fyi)

Huh... making phone offline is longer offline... Thank you for the video!

I'm a fan of graphene.

Samsung's been releasing security updates faster than Google has for their Pixel phones, lol. It's not like 5-10 years ago where you were lucky to get one or two updates a year.

lets also not forget that you have choice whether you want iphone antennas off when turning off your iphone (Turn off Find My on Power Off)

I know my phone is unfindable when I close it in my microwave

well android's design and Qualcomm's integration is bad the way they manage the sourcecode in a poor manner which make it extremely hard if not financially impossible to provide updates of their distribution kernel

Most annoying is that people will still refer to such devices as "powered off". Because it is both hard to change language and convince manufacturers to change their behaviour.

Great and entertaining video, as always

I worked for a cell phone company at one point that utilities ATT towers. The SIM is there for authentication with the towers for LTE and 5G. When your phone connects to the towers, your IMEI is verified with the network authorizing data usage. I'm interested to know if without any SIM an iPhone can be located still as ATT doesn't allow any data transfer unless a verified SIM is detected.

Kenny, what do you think is the most secure Android ROM for a phone that isn't a Google phone?

0:00 you can just hear the jazz hands

So where is your link to a faraday bag sponsor.

thank you so much for sharing this method with !

What I have to remind myself from bring both depressed and frustrated at the situation is the fact that so many people feel entitled to have the features that are then used to put them in danger. You have immature and irresponsible people getting angry in the past at the company for not figuring out a way to help them find their lost phone ("it's current year" / "they can put a man on the moon, but they can't do [x]"). Add on top of that, and they want to have their phones to be secure so that they can live carefree while the hackers can't find it. Not realizing the whole safety vs freedom riddle they contend with.

just buy a pocket size faraday cage bag to keep the phone inside when "off" then.

It's funny because I listen to this while my headphones are connected to my phone with wires.

I've wanted to load a custom ROM onto my phone, but it is a Motorola G Power 2021 so I have not been able to find any that are compatible. Does anyone know what, if any, custom ROM isn't likely to brick my phone?

4:02 I am not sure my phone is off, but the battery is taken out, and there is nothing similar to a battery when I opened it.

Is this why turning on "airplane mode" doesn't actually help with battery usage??

5:56 My Xiaomi Redmi Note 9T still has a headphone jack. Also has an IR blaster, for some reason. I wouldn't say that I trust it though.

I have a rooted OnePlus 7 pro, can this phone use a radio kill switch? If not what is the best phone to upgrade if I value rooting and privacy, I'll be using grapheneos regardless

GrapheneOS, the Glowie's best friend

Could you do a video about faraday cages and perhaps give a DIY guide?

my first thought was: "hey at least it's good for the custom Rom community as an entry point" "wait what custom Rom community?"

Please answer when my phone was turned off, the function of finding my device was turned on. But I did not include this function. How is that possible?

This is why I don’t store payment methods on my phones

You can find your iPhone with iCloud even it’s turned off or dies (but only for a short time after it dies)

Bluetooth is not that unsecured tho, the change frequency every ms