Is there a fork of Android (or a way to harden it) that locks down the OS similarly to how Apple does it?
Apple’s implementation can actually protect you from commercial spyware. I’m impressed.
You must log in or register to comment.
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn’t great, if contents of the website are behind a paywall maybe copy them into the post
- Don’t promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
- 0 users online
- 57 users / day
- 383 users / week
- 1.5K users / month
- 5.7K users / 6 months
- 1 subscriber
- 2.42K Posts
- 56.8K Comments
- Modlog
Not sure but maybe Ubuntu on the phone ?
Xprivacy?
I didn’t know this app existed. Anyway, the project was discontinued.
I’m assuming your talking about AOSP? Basically anything that’s privacy or freedom oriented such as Graphene, Calyx or Divested OS.
Can any of them prevent a Pegasus-style attack?
If I understand correctly, Apple does it by disabling common attack vectors, remote fonts for example.
I’m pretty sure I heard that graphene could possibly prevent a pegasus-style attack.
Wrong. While those systems are, in fact, more hardened than regular Android, they can all get infected. So even if the device has iOs, or GrapheneOS, there’s still the human (read: “user”) factor. And the human factor (on the OPSec side or the user side) will always be the easiest part of the equation to exploit.
deleted by creator
That’s true, all devices are hackable, there’s no 100% protection.
No tool is perfect, but if that’s a security improvement, it might be worth enabling.
I know of at least one instance where lockdown mode protected a user from NSO spyware.
A Citizen Lab’s research confirmed it:
deleted by creator
Clear and straightforward. Thank you.
You’d need to always keep your phone in airplane mode, and maybe either use a mobile provider that works horrible with GrapheneOS, or change your mobile strength to like 3G, you can completely lose calls and texts when in airplane mode at that point, you’ll never get them, maybe you can stop the Pegasus attack.
Or, don’t use a phone number, rely on encrypted messaging. But if you must have some number, you could have 2 phones, one with just the phone number and sim card, then the other phone with Signal so your private phone shouldn’t be compromised.
Those are the only ways I can think of trying to resist it.
I mean they could use usb booted TailsOS and encrypted messengers like session, matrix, signal, etc.
Is there a way to USB boot Tails on a phone?
No I meant like on a laptop. Grapheneos might be the safest thing on mobile but I would rather to tailsos on a pc if I had to choose
I love graphene doesnt have a lockdown per say but u can definatly have seperate profiles that should acheive a simmillar amount of isolation.
“Lockdown mode” is a false sense of security. Graphene is fine and should be challenging to compromise as long as you aren’t doing anything to crazy. I would be very interested to see an attack for it as I haven’t seen any public attempts as of yet
DivestOS is awesome.