For years, cops and other government authorities all over the world have been using phone hacking technology provided by Cellebrite to unlock phones and In a leaked video, a Cellebrite employee urges law enforcement customers to keep their use of its phone hacking technology secret.

Cellebrite asks cops to keep its phone hacking tech ‘hush hush’ | TechCrunch::For years, cops and other government authorities all over the world have been using phone hacking technology provided by Cellebrite to unlock phones and In a leaked video, a Cellebrite employee urges law enforcement customers to keep their use of its phone hacking technology secret.

  • phoneymouse@lemmy.worldEnglish
    19·
    1 year ago

    Anyone know what Cellebrite can hack these days? I thought many of the latest phones and software versions had closed their vulnerabilities. Does anyone have data on which phones and OS versions are still vulnerable?

    • SloppyPuppy@lemmy.worldEnglish
      11·
      1 year ago

      My wife works an cellebritete. Its a device you connect to any phone and it gets evidence police is looking for. It can scan ANYTHING on the phone in seconds. This includes messages in applications, phone calls, images, appilcation data. Anything.

      The smart thing about this is (if used under legal hands under a non corrupt government/entity) is it can be set up to only spit out relevant evidence by some search predicate / criteria and nothing else incriminating.

      So for example if someone is arrested for kidnaping and they want to know if the suspect is really a kidnapper and maybe where the victim is it can spit out anything related to the case in question but nothing else incriminating on unrelated stuff.

      It does this in under a set of rules admissible in court. IE the evidence cannot be tampered with (even by police) , it assures that the evidence is actually from that specific phone and wasnt touched and so on…

      • phoneymouse@lemmy.worldEnglish
        6·
        1 year ago

        Yeah, but phones have encryption and security. In order to get access to the data on the phone, cellebrite is hacking the device to circumvent the security measures and break the encryption, which is illegal for any individual to do, and should also be illegal for a corporation to do (corporations are individuals, legally speaking).

        Phone manufacturers do not want companies like cellebrite breaking into their devices because it can be used for nefarious purposes. If cellebrite can get in, any other hacker can get in. So, phone makers are always closing these security vulnerabilities where they can find them.

        • SloppyPuppy@lemmy.worldEnglish
          11·
          1 year ago

          Cellebrite is (hopefully) used under the law. They either get warrant or use a perpetual warrant on urgent security stuff. At least in countries with proper laws and abiding police.

          Hackers sure indeed can use the insecurities cellebrite is using. But cellebrite has massive amount of budget for finding insecurities which normal hackers / people lack.

      • 0xD@infosec.pubEnglish
        41·
        1 year ago

        The question is which devices it works on. Probably mostly older ones, but I wouldn’t be surprised if they invest heavily into zero day research and can do some stuff with newer ones as well.

        • SloppyPuppy@lemmy.worldEnglish
          21·
          1 year ago

          I wrote with 100% confidence: all of them. This is what they are a zero day warehouse company and trader.

          • sweeny@sh.itjust.worksEnglish
            2·
            1 year ago

            It’s true, my uncle’s cousin works for Cellebrite and says they can even hack into our brains