Wipe Device LOCALLY after failed password attempts doesn't work! - General Topics

I want my device to locally wipe all data in case an incorrect password is entered more than 3 times. That is the ultimate in security, because many times the sim is removed and there is no GSM or Internet so remotely control it if stolen. So a local solution is required for business people who do not have or need exchange or remote access. Just want that when their device is stolen it is wiped locally.
I came across several places on the net that tells you that it's possible by simply putting a new Decimal Key named 'DeviceWipeThreshold' (HKLM\Comm\Security\Policy\LASSD) and set it to a positive number like 3 or 4 that means after these attemps the device main memory and memory card are wiped.
It works fine. My only problem is that it prompts the user for the last chance to enter the correct password before it wipes the device. I do not wish that prompt to appear, cause once stolen and password tries exceed 3 or 4 times i want to wipe the info WITHOUT a warning. Does anybody know if there is a registry tweak to remove that warning or change the text of of it ?
I couldn't find a real through document on all the registry policy tweaks.

Related

PIN code - wrong entry wipe facility, encryption etc

Hi there
I am just finding my way around WM6 on my new Orbit 2. I haven't decided whether to use the file encryption feature yet. What I WOULD like to set up is the auto-wipe feature if you enter the wrong PIN number more than a specified number of times.
I gather from posts that the default number of times for wrong PIN entry is seven. I think this is too much and would like to change it to three wrong PIN entries. I figure that if the PDA gets lost/stolen then whoever has it might decide after a couple of PIN try-outs to remove the MicroSD card before the 'wipe' feature has kicked in. Also, I am presuming that everything gets wiped - internal data and storage card?
Does anyone know how I can change the setting? I get the impression that it's possible but can't see any user-setting on my Orbit, or any posts answering this question. If there is no way to change it does anyone have any recommendations for a third party utility that would do this?
Also, I am undecided about using the encryption feature - not sure of the implications for speed and backing up etc. Has anyone any thoughts about this? I wonder if it might be best to only turn it on AFTER you have installed programs etc... in other words, turn it on when I start to save my data and personal files.
As a 'related' question - does anyone have any thoughts or info about the security of your "Contacts" when running WM6? I have never fathomed out where exactly they are stored and how you can secure them if the device gets lost/stolen. I reckon that my Contacts data is actually one of the most valuable and private things I keep on my PDA and would hate the Contacts info falling into the wrong hands, with all my friends' phone numbers and addresses etc at potential risk
Many thanks to one and all for anything that might come my way as a result of this posting. Kiss kiss.
OrangeSpiv

[Q] Theft Aware vs Cerberus

Hi guys.
Try to decide which to get between these two. It looks quite similar in what they do? Which one would you prefer? Don't matter the cost..they're just worth paying for. Which is better for non rooted phone?
anyone at all?
Never heard of the 2nd one but I am looking for a replacement for wavesecure
The only difference i can see between cerberus and TA is that cerberus can take photo. Apart from that, anything else guys?
Theft Aware saved my phone, Cerberus... hmmphh
[UPDATE] Tested "in the field"
Yesterday night I came to a friend's party and couldn't find my phone, so first thing I tried to dial it and see where I forgot it- went to check the car, but the phone wasn't there. The strange thing was that I was directed immediately to the voicemail, as if my phone was powered off..
Then I noticed my wife's phone has got an sms from Theft Aware, that the sim was replaced with a new number (including the new number). I called the new number, and got no answer but was able (via sms command) to get the phone's location, then I sent an sms to the new owner that I'd like to have the phone back and a number where I can be reached, then locked the phone.
At the same time I tried to operate similar thing with cerberus via their android client which is easy to operate. Nothing happened.
I tried again to call the new owner- he answered- told him I've got his phone number, location and photo (this was a bluff because cerberus did not work). The new owner was so surprised that he immediately offered to bring it back, which he did. I got my phone back after barely 30 minutes.
When the phone was back I checked my mailbox, and noticed that I got a mail from cerberus:
IP address: 109.64.199.59
An unauthorized SIM card has been inserted into your device.
Number: null
Network
Operator: 42502 ()
Subscriber ID: null
SIM card
Operator: ()
Serial: null
This is an automated message, please do not reply.
Nothing really useful...
Cerberus app did take a photograph, though, but it showed my own face back at home- the photo was taken only AFTER I have entered my unlock pattern, so it was no real use.
So, when really needed Theft Aware vs. cerberus: 1-0.
Nowadays Theft Aware is free, bundled with Avast! antivirus and some other bla bla (which can be manually uninstalled), so I just can't see no reason whatsoever why not install this useful program. Within minutes, all Android phone owners in the party started looking for Avast's TA and iphoners started looking for something similar for their own kind
You can probably disregard all the BS I wrote before (below), but whatever...
[OLD][BS]
TA is only sms-based. Perhaps they are working on some web-interface but not sure where it stands (beta stage?).
With Cerberus it is possible to send commands from their website and from a small applet/client (e.g. you can install it in a friend's phone) that is very useful if you don't have a computer nearby. Cerberus can also trigger the cameras, record audio, splash a message+speech in full screen ("Hey, thief! Bring it back") etc. Cool, perhaps also useful.
TA can be installed as system app, and with a name of your choosing to add further "security".
Cerberus installs as user app, but it is possible to download from their website a zip file that can be flashed as system app (or installed via ROM Manager) but not sure how many users are aware of this option. Anyway, it will still show as "cerberus" in lots of places, so it cannot be considered as stealthy as TA.
Both have many disadvantages- if the thief has access to the phone (some people don't use any pin/pattern lock, eh???) then he can deactivate TA or Cerberus from the list of device administrators and in a few seconds rendering both of them useless.
Both won't survive the flashing of a new rom, but I doubt that most "casual thieves" will go away to flash a rom in a stolen phone.
Some other sms applications using notification may override TA. That's what happens with GO SMS, for example- GO SMS will display the sms with code and everything, and TA won't work at all. There are workarounds, but it is an annoyance.
Major disadvantage of TA is the same code used to enter the application is also the one used in SMS commands! The dev is well aware of this issue but thinks it is too much for a user to remember two different codes (one for entering app, second to confirm sms commands). Thus, a thief can just get the sim out of your stolen and put it in any other phone. Then, when you start sending sms with commands to your stolen phone, you'll be actually providing the thief with your unlocking code... Next he turns on the stolen phone (with whatever sim- original or one of his choice), unlock it with the code you've just sent him by sms.. It's THAT easy. I am not sure how cerberus will act, in a similar case.

Phone wiping after misentering passwords multiple times

Maybe I am just missing something very obvious but it seems like there is no option to wipe the phone after misentering the password multiple times (BB or iphone style)?
I know it can be done with Exchange policies but it will be a cold day in hell before I go THAT route...
nupi said:
Maybe I am just missing something very obvious but it seems like there is no option to wipe the phone after misentering the password multiple times (BB or iphone style)?
I know it can be done with Exchange policies but it will be a cold day in hell before I go THAT route...
Click to expand...
Click to collapse
It's not a standard option in Android (I for one am glad - I've accidentally wiped my work Blackberry more than once when inebriated). Android Device Manager (or the Motorola equivalent) both allow a manual remote wipe from a PC or another Android Device.
It's possible for apps to monitor incorrect password entries (no root required just a Device Administrator Permission), although I'm not sure if an automated wipe is possible without root. Take a look around the play store to see if anything meets your needs.
I use the automation app MacroDroid along with Secure Settings (both in the playstore) on my unrooted MotoG. The way I've got it set up is that 3 failures to enter correct PIN changes it to Password mode, a further 3 failures will prevent the phone from waking up (by automating a screen lock associated with the screen coming on). As-well as that it will automatically take and email to me front and rear camera photos, and the phones location on the change from Pin to Password, and again on the change to 'Lockdown' mode. I can send it an SMS with a special message in the text to get it to repeat this. I'm toying with the idea of setting it to shout 'Thief!' repeatedly at full volume when someone tries to turn on the screen when it's locked down
It is not exactly that what you were asking for. But i just wanted to mention also Cerberus here.
It brings a lot of nice features to control your phone remote.

Phone reset after consecutive failed authentication

Hello,
My phone is protected using fingerprint scans and pin code. I noticed that after several failures the phone is not only telling me that it will lock, but also that it will reset (after 8 failures, or something like that).
I don't see that as a security feature, anyone willing to make me loose a lot of time only have to put his/her fingers 8 times on the button and ... everything is gone in my phone ?
Is this a local security feature ? I mean is it configurable somewhere ? or is coming from a remote policy, or hardcoded somewhere in the phone ?
Thanks.
Did you add your work email? I had this when I synched my work email to my device. Apparently, this is one of the security policies of my workplace.
And yes, I was locked out of my device a few days after I got it. It read my belly as a "fingerprint" unlock attempt, and soon I just saw it was wiping all my data. I was really bummed by that since it took hours for me to set up my device according to my liking. Fortunately, I still had my previous phone and didnt wipe it yet.
Yes, I have a work mail configured. Do you think it comes with security policies ? Because on our other phones (iphone, GS5/6) there is no similar settings put in place to wipe data.

Bypass unlock pattern

Hi,
I want to start off with saying this isn't a stolen phone.
A friend of mine his uncle recently passed away and there are alot of questions about it.
He had a galaxy s7 which has an unlock pattern, is there any way to bypass it so we can take a look at his last messages? It doesn't have usb debugging enabled.
We also have his pc, but it is password protected, if we can get in we hope he is logged in , in its google account, but that is a long shot.
Any help is much appreciated!
There is a pc program called drphone or something like thay and it claims to be able to remove patterns and pin codes however you have to pay for it...also I'm sure if you bring the pc to a computer shop they will be able to remove the password...best of luck
If the phone is up to date, the exploits are likely all patched.
With a death certification most businesses do offer services for recovering data within reason, carriers can pull SMS records, and social media can provide access to certain data. That may be a more realistic approach.
Assuming you have TWRP go into the file manager found in advanced and go to /data/system and delete the locksettings.db or gesture.key
Hope I helped

Categories

Resources