How do you keep yourself safe from this?
Is this not patched yet?
I don't have a smartphone.
>>108746103dumbphones are even worse - SMS/calls aren't encrypted at all
Lockdown mode and iPhone’s 17 or newer have built in hardware security against attacks like this. If you have an android, good luckhttps://security.apple.com/blog/memory-integrity-enforcement/https://support.apple.com/en-ca/105120
>>108746103That's antisemitic.
>>108746084Remove the battery.
>>108746084GrapheneOS. Enable security preview patches. Limit permissions for apps with network access with the help of contact/storage scopes. Disable sensors/location/phone/sms etc permissions for all apps unless they don't have network access. Use a strong passphrase for BFU. Use pin+fingerprint for AFU. Disable usb-c permissions.This will get around pretty much any Pegasus infiltration, even if you're a high value target. No 5 dollar wrench guarantee though, but in that case you can still use duress passphrase.
>>108747283>He doesn't know
>>108747251Memory tagging has been supported on GrapheneOS for much longer than iPhone. (Since the release of the pixel 8). Its also supported for the entire system and all apps unlike iOS where it just works on a small subset of apps and the OS components with no option to enable it for other apps.Lockdown mode is a standard AOSP feature.
>>108746084>whatsappI'm not a turd worlder so this isn't a problem for me.
>>108746084If you insist on having a smartphone at all always get the newest generation iphone and restart it multiple times a day or every time you receive a notification / message if you're that paranoid. Despite the popsci tier bullshit articles and the trust me bro we've totally fucked iphones PR articles from some malware companies there is no known way to persistently infect relatively recent generation iphones running on up to date os versions.>bb-b-b--b-bbut muh super secrit darknet hacker forum claims!Show us the persistent malware or gtfo. It's as easy as that.If such a thing exists (which isn't impossible) it's worth far north of single digit millions and the only way you or I ever hear about it is because the three letter glowniggers that bought it decided to burn it on a Jesus tier threat to them. Zero click zero days don't get burned on niggers so retarded they post on the largest clearnet three letter agency honeypot, much less something worth as much as persistent malware on recent ios versions.
>>108746084I don't use Android.
>>108747022That's the same with smarthpones as they use the same tech. You should always assume a wiretap. What dumbphones do protect against is persistent spyware. Both are vulnerable to ephemeral spying.
>>108747022I intentionally disable RCS so that my phone uses SMS. I'm built different than you pussies.
>>108747022What's your point? Don't tell me you don't speak in code all the time with your friends?
>>108746084Isn't the solution "don't click dumb links?" But then I guess there's the issue of your friends clicking dumb links, and you trusting them. This world is a prison.
>>108747257So it is.
>>108747251HAHAhahahahaha useless gimmick normies eat up, you can't patch a hardware backdoorhttps://arstechnica.com/security/2023/12/exploit-used-in-mass-iphone-infection-campaign-targeted-secret-hardware-feature
>>108747947How naive or young you are? Most xploits work by just receiving a message, no action on the user is needed.
>>108747990>How naive How do I quantify this for you? Serious question.
>>108747990maybe if you're an important target for a nation state actorthe average joe has nothing to worry about in this regard, nobody is blowing an 8 figure zero day on you.
>>108748027>blowing an 8
>>108746084but you're already safe my guy, you're a nobody and it does not require all this technology to track nobodies.
>>108747947zero click exploit btw
>>108748100yes sir that's the going rate for a zero click full chain on android or ios, ios being a little more of course. if you know a guy, of course. if you have to use a public broker then it's only 5-7 million and then they'll flip it for 10x.
>>108747377Removing the battery turns off the phone for good. If you destroy it in the process all the better.
>>108746084no valuable data goes through my phone.
>>108746084I don't click links on my phone
buy a nokiabuy a pinephonedon't buy an appledon't buy an androidyou will not win against NSO group when it comes to cyber security - android and ios have too much technical debt atpGoogle voice and your headset for the gaps.It's really just that simple. See pic related. it's what you want.
>>108746103same>>108747022dumbphones don't protect against targeted surveillance but they do against mass surveillancenot even being phoneless will protect you against targeted surveillance
you can't if a state actor wants into your phone he will get into your phoneit's not a threat to you because you aren't worth the effort >>108747251it eliminates some attack vectorsdoesn't eliminate all of them>>108747975>normies you're one too apparently >>108747283yeah that works
>>108747975>you can't patch a backdoorWorse you can't patch your physical door. If the government wants in they're coming in what the fuck are you going to do about it bitch boy?
Is it really worth getting a dumbphone? I've been thinking about it
>>108750238A Nokia dumbphone is just a smartphone that you have no control over and is far behind in security updates. It is easily remotely compromised through the modem or any other radio.A pinephone is also easily compromised. The modem runs an outdated and insecure android fork. None of the firmware gets updates (other than WiFi/Bluetooth through the installed GNU/Linux distribution) and it has a bottom of the barrel SoC when it comes to any kind of security features. You just listed the 2 most easily compromisable devices you can currently buy. A modern iPhone or pixel (especially with GrapheneOS) is much more secure and the latter has been proven to not be compromisable with reasonable opsec.People think these devices aren't secure because they use apps that heavily compromise their privacy, not because of unauthorized remote access. If you choose your apps carefully and manage your permissions well these are the superior devices for both privacy and security.
>>108750604I have a dumbphone because>it makes me immune to mass surveillance>has physical buttons (a number pad)>people who don't know my number don't have 24/7 immediate access to me>I only have to charge the battery twice a month
>>108750636>trusting crapple or jewgle with your hardware when both are known to lie in bed with mossadyou glow
>>108750643Sure. Trust something that has known vulnerabilities and still has proprietary hardware and (outdated) firmware but don't trust anything that actually fixes every CVE and has many mitigations in case something gets compromised anyway, like iommu, memory tagging etc.Recommending anything that is very easily compromised with publicly available tools makes it more likely you are the one that glows.
>>108750636While some of what you are saying is true,SS7 = compromised, A phone has a very simple purpose. To make and receive phone calls. I do think phones are nowadays expected to have more featuresIf you are a security concerned person, which I am, there's really no point trusting much any technology to handle your affairs if it can be helped.If it can't be helped, use GPG with Kyber. If it can be helped, do your shit in person. I don't trust mobile phones for many the reason you said, the baseband modem is an inherent vulnerability.I think that probably the best OSes for security are:OpenBSDQubes OS Tails OSeach depending on your threat model and skill levelI think the best hardware is:#1: TALOS II Secure Workstation (POWER9)Thinkpad X200Thinkpad - Any series which can run w/ LibrebootRaspberry Pi 4BOrange Pi
>>108750668call me when graphene is available on chinese smartphones, until then I'll treat it as a jewish psyop
>>108746084Turn your phone off anon.Sell your smartphone, don't use a dumbphone.Don't message people online.Never act insane online to fly under the radar.
>>108746084the sort of intel this is trying to capture is only relayed face to face anyway.
>>108746084SIM and sms capabilities are a huge risk. Most phones are vunerable through 5G downgrade attacks like seen in Stingrays.the only option is to use a device like a ipod that doesnt have any SIM capabilities and only connect to wifi signals
>>108753276so, a wifi-only tablet?
>>108747455>>108747460So are iPhones better than GOS Pixels?
i can't wait til there's a proper linux os you can at least make calls/texts from and fits on old smartphones
>>108750686>Raspberry Pi 4BIsn't it full of firmware binary blobs to function?
