What other steps would you add to this checklist? Leave a comment, and if you haven't already, scan your phone for malware using Certo. Get 10% off using this link: www.certosoftware.com/AllThingsSecured

I'm struggling with the recommendation to physically plug an "infected" device into your non-infected computer?

*I definitely would not add another 3rd party (in this case, Certo) to the mix if I thought my device was compromised. I would wipe the phone (maybe gather 2FA keys manually by hand first), throw the phone away, buy a new one, and start from scratch.*

But who are Certo?

I think, given the money to do this, I would buy new devices and change my passwords from the new devices, and then factory reset and sell all of my old ones.

#1 Get a new phone, and set it up from scratch with new MFA. Preferably hardware-key like Yubikey. #2 Keep the old one as a backup, should you need to extract forgotten credentials.

1. Changing your passwords on a compromised device, is as useful as changing your front doors lock, when your garage-door is stuck in the open position. 2. Using 2FA on a compromised device, is equivalent to a vault with integrated display that tells you the code. 3. I highly doubt that the anti virus has access to the boot-loader partition of your phone. It's equivalent with asking Trump medical advice when you're suffering a viral infection. 4. Reviewing every app is a good start... It won't however clear an infected boot-loader... 5. Review app permissions is also a good start... But this also won't clear an infected boot-loader... 6. Full factory reset is probably the best solution... However, even this won't clear an infected boot-loader... With a government or state actor, it's probably best to re-flash the whole boot-loader and OS image on the phone... Or just get another phone instead...

Even a factory reset could not be enough. Depends on the thread level and what kind of "people" you are struggling with. The best would be, in advance, going with an alternative phone and alternative accounts to risky places.

Shouldn't you scan for malware BEFORE you change any passwords? If keyloggers are installed and pick up the new codes, you're screwed.

Good job Josh. Highlighting how to fix a situation will always be preferable to replacing your gear...

Is offloading unused apps on Iphone a equivelent alternative to deleting apps? I am worried about losing data from apps I delete. And than I go into privacy & security and uncheck permissions.

Certo is better than Norton or Kaspersky?

This seems like just an ad for Certo, which I understand, but looking on their website it seems hard to find a specific threat protection or detection list, just vague statements about being great, and things like intruder protection, whatever that is... Would be nice to have some idea what you are paying for. Otherwise it is just another anti-virus ish solution.

Wow, you are definitely another level of security! Thank you! I'd like to know how to check my computer. Is there something like Certo for comps? Could you let us know? Thanks!

Is everything on this channel an ad? uBlock even blocks the link in your description because it redirects to a pxf domain lol. Be sure to disable or clean your cookies if you decide to follow the link. It's a known tracker. Irony much?

Josh that sounds terrible.. why would you ever be arrested and/or treated like that?

Excellent vieo. I also wanna hear the story behind the detention.

Excellent . The issue.. I don’t trust any third party software

To summarize it all: if a state government agency took possession of your phone, they probably either installed some malware you cannot see or did a SIM clone of your computer and installed the 2FA app on their machine with your accounts. Assume the worst and swap phones, then change all passwords and 2FA codes, am I correct?

Does this apply only on Cellphone or it would work on a laptop as well? Thanks!!

It would be great if you make a video on how to factory reset iPhone and starting all over without using the backups.

Great concise videos as always!

I’ve been waiting for this one.

What do I do if o know they are coming thru my att router. Can I use my Yubi key on it?

Is it possible to set up the iPhone to use a Yubikey to unlock it rather than FaceID?

Don’t ever take your primary devices to foreign nations. Use a burner phone so to speak, and keep any files you need for the trip on an encrypted flash drive. When you get home… wipe EVERYTHING and shred the “burner”. A large company I worked for required a “China Loaner” for business trips along with a password protected encrypted USB drive.

is there same for pc?

In case you think/now your phone is compromised just buy a new one. It is way more secure and do not forget to get a new phone number too

All of our devices are compromised every time we do a Google backup!

And that's why a couple years ago I told my company that I wouldn't be going to China on business trips anymore. No thanks.

Do you need another security app along with certo? Or is certo good on it's own? I asked Certo! And they can't seem to answer that question! 🤨

I tried this, and they got back in my phone. I believe my carrier is allowing them to do it.

Alright, alright, you found me...

In that case , sell the phone and buy another one. Probably your firmware where hacked or your celphone modem could be picked. Or try not only to reset the phone, but to reflash a fresh stock firmware, (ej: Odin on samsung and a stock firmware), this overwrite all, even reflash the modem.

Thank you, great video. Please could you let me know if there is some spyware on a smart phone/tablet will this dissappear if the devise if reset.

The keepsafe app is really safe?

Officials from the EU going to Chinese car makers to check if these cars comply to EU-rules get simple Nokia cell phones and simple laptops to ues. These devices are obsolete once home and get destroyed. Not really an option for us, but it is something to keep in mind.

Great video. Learn something new.

I disagree; I think you need all new devices in a case like this. Governments have the best malware. No firmware is safe!

This are mostly for like your "ex-boyfriened "doing the hacking- and this are what most people can do since they cant do more unless they destroys the device but a " agent" might have comprised your online account with malware so your new phone gets infected that way .

I have some security question concerning password managers. Should i save the password for my mail used to login to the password manager on said password manager? Is it only okay to do so if i use 2fa keys (physical keys) or a software 2fa such as authy or google authenticator to secure my password manager? Or should i save it some other way, such as on a paper or separate phone password manager (samsung pass)? To begin with is it a good idé to use a separate password manager on my phone and laptop/pc? I have a main mail and a separate secure mail, should i change the mail used for my password manager to my new secure mail (protonmail) or should i keep using my old mail? The one thing that i am concerned about switching is for longevity, if protonmail shuts down will that mean i cant get into my password manager or will i have the option to change the mail used (maybe get a warning a certain amount of time before it shuts down?)? Otherwise i would want to change the mail, concidering the large possibility that my mail have been leaked in some way or another. I intend to keep my old mail, have one that is secure and only used for important stuff and a third for email aliases and less important stuff. The old i will try to salvage and use for less important private stuff.

Unrelated question but what is your view on rewards apps (Upside, Fetch, etc.) From a privacy perspective? Do you use any rewards apps? Edit: So, another question actually: What are your thoughts on Rich Communications Services (RCS) especially now with Apple adopting RCS services alongsode iMessage? Personally I don't think RCS is being talked about enough, or at all really by privacy advocates.

Just give phone back to the manufacturer and ask for a complete software reinstall just tell them any dumb reason they will do it for a small fee. If you’re competent enough install it yourself by using a sandbox or by using a virtual machine. If that’s not an option then probably buy a new device and most importantly dispose that old sim card and move to a new network provider or get a new phone number. And finally use a physical security key. 😊

Did the government force you to hand over your smartphone password or use your biometrics to gain access to your smartphone?

Only the PAID version find malicious software hidden on iOS. The paid version offers security options not needed. If China had your phone factory reset only. 2:22

Wait, is that event what triggered your awareness for privacy? Because if you were already privacy aware it seems like a weird decision to live in one of the most surveilled countries on earth.

A state actor should also include your own government($) . IMO worry about NSA, NSO, the FBI, MI6 the enemy within your own gates.

First thing I would do if anyone else had been with my phone, specially the Chinese government would be to trash the phone. I can afford to buy another phone and start from there. No way I would trust any company or piece of software to check my phone. I would assume it's compromised and goes straight in the trash after putting a hole through it

WE WANT TO HEAR THE OTHER STORY ABOUT BEING DETAINED FOR TWO WEEKS IN CHINA! why were you targeted? what happened? were you physically forced to hand over your devices? were you compelled to give up passwords/pins stored in your brain? did they literally detain you in a room for 2 weeks or did they just take your devices for two weeks while you were there then give them back when you left?

You know, I've been a follower for close to 4 years. I am disappointed. I honestly cannot keep up with all your "recommendations" you recommend one: I get it then you recommend another brand. It feels like your not caring about the safety of your followers and are just trying to get paid.

Sorry, I have to ask (what others are also wanting to know), why were you in China? Work? Missionary? Or??? I'm sure there's a very interesting story on that whole event. Over two weeks of interrogation - crazy. Glad you're on the pther end of that now.

⁠No, what disappoints is that governments do that: they won’t obey their parents.

Giving a NEW COMP ALL YOUR DATA ? NOT !!!!!

wouldn't the better idea be to not do everything on your phone?

You’re really struggling to sell me that certo software that makes you rich and me poor 😂

this guy gives off narc vibes. nice ad btw

I think your an iphone user (as am i) & honest i'm comfortable with my security hygiene so i wouldn't have worried (unless you were forced to unlock your device & then i would have worried). I used a layer approach so i don't 100% depend on one product to keep me safe. If security is broken in one area its most likey going to be caught by something else I use. Depends on how thick your tin foil hat i guess.

Hartelijk dank !!

This reads like an ad. Unsubscribed.

Why go to China to begin with? That alone is a security risk. Hey look, talks about Apple again. Ugh. All things Apple

@AllThingsSecured I absolutely love your channel and I have been following your steps for the yubikey what kind should i get for 2FA and how exactly does it work. Does it work for all passwords?

Thanks for another great video, Josh. I learn something - no, a LOT! - from each of your videos. Keep ‘em coming! Regarding living in a communist country, anyone should go in with their eyes open and expect that it’s always a possibility that they will use you as a political pawn, or just haul you in because of their paranoia. It doesn’t really matter what your actual work is. It just sucks that you had to go through that experience.