Forgot phone password - General Questions and Answers

Friend got into a fight with his brother. His brother was able to break into his phone.
Friend changed the password on the device last week, and because of his school, he doesn't take the phone with him.
He opened the phone today, and can't remember the password.
It is a Moto G7 Power, running Android 9
It has GenTech installed on the phone.
I do not know any specifics beyond that, as the settings are hidden behind a lock screen.
When I logged into the Google account, it looks like the account hasn't been backing up photos, contacts, etc since the GenTech was put on. iDrive also hasn't been backing anything up.
Are there any tools that can remove the lock screen? Preferably free, but I wouldn't mind paying a small amount. And NOT wipe the device.
Before coming here, I saw Eelphone, but it looked super shady.
Searching through XDA's forums, I saw Dr.Fone as an application as well.
Are these the best options? I mean, I troubleshoot devices for clients all the time, and thankfully haven't had to recover their devices like this, and I know that it has changed a lot since the beginnings of Android, but I need something in the toolbox for sure.
Any help is appreciated, thank you!
Edit: I thought I might try Dr.Fone on my Motorola device. Uh, not the right application that I need! I want the data preserved, not wiped. If I wanted the phone wiped, I'd have done it from the bootloader.
(Or do they make a copy of the device, wipe the phone, and reload everything minus the lock screen?)
(Or is Dr.Fone a malicious program masquerading as legitimate?)

DaNissNYC said:
Friend got into a fight with his brother. His brother was able to break into his phone.
Friend changed the password on the device last week, and because of his school, he doesn't take the phone with him.
He opened the phone today, and can't remember the password.
It is a Moto G7 Power, running Android 9
It has GenTech installed on the phone.
I do not know any specifics beyond that, as the settings are hidden behind a lock screen.
When I logged into the Google account, it looks like the account hasn't been backing up photos, contacts, etc since the GenTech was put on. iDrive also hasn't been backing anything up.
Are there any tools that can remove the lock screen? Preferably free, but I wouldn't mind paying a small amount. And NOT wipe the device.
Before coming here, I saw Eelphone, but it looked super shady.
Searching through XDA's forums, I saw Dr.Fone as an application as well.
Are these the best options? I mean, I troubleshoot devices for clients all the time, and thankfully haven't had to recover their devices like this, and I know that it has changed a lot since the beginnings of Android, but I need something in the toolbox for sure.
Any help is appreciated, thank you!
Edit: I thought I might try Dr.Fone on my Motorola device. Uh, not the right application that I need! I want the data preserved, not wiped. If I wanted the phone wiped, I'd have done it from the bootloader.
(Or do they make a copy of the device, wipe the phone, and reload everything minus the lock screen?)
(Or is Dr.Fone a malicious program masquerading as legitimate?)
Click to expand...
Click to collapse
Is the device rooted?
Does the device have USB debugging enabled in system settings?
If the answers to these questions are no, then all you can do is factory reset. After resetting, it will probably be FRP locked(Factory Reset Protection), which means you still need to remember the google account username and password to get logged into the device, but, the lockscreen pin/password will be removed. You'll lose the user's data in the process. At this point, if it isn't rooted or does not have USB debugging enabled, there aren't really any options to save their user data before resetting the device.
Sent from my SM-S767VL using Tapatalk

The phone is not rooted, unless the GenTech software gained the root access. (I am too new to post a direct link, but it is a monitoring program - I don't know how common it is outside of my community)
If I recall correctly, I did get access to developer options, but that was back in July - I'm not sure if I have developer options enabled at this time.
The paid softwares can't crack it? That really is too bad.

Related

[Q] Password protect the device administrators in security settings?

Phone is a Droid Incredible running the latest stable CM7 (7.0.3)
----------------------------
I recently installed seek droid and a few other applications meant to protect my phone in the event of malware download or the phone is stolen. I noticed though that if someone goes in and removes these devices from the admin group that they can just be uninstalled. I realize the lock screen is there to protect the phone but if they do get in they can very easily uninstall the programs I would be depending on to get my phone back.
Now I know someone could just wipe the device using the factory reset in clockwork mod but yeah ... anyway I am looking to see if there is a way to secure the security settings or the device administrators section with a separate password of some sort? Or maybe there is a program that will do it? I tried Seal but it only seems to do app locks and it doesn't require administrator privileges so it can just be uninstalled anyway.
Thanks for any help. I have been looking around for awhile and come up with nothing so I am not expecting much but figured this would be the place to ask.
There are such tracking apps that require root but will be installed into /system and thus even survive a factory reset.
I think you can install any app to /system through a bit tinkering.
Some allow to change the icon and app name to hide its true purpose.
In the end, if the person knows what he is doing, you can't stop him.
Thanks for the advice. I realize if they know what they are doing they can get it off somehow but would be nice to not have an obvious app sitting in the drwaer called 'seek droid' that can then just be easily uninstalled.
Thanks again.

[App Idea] Plan B for data recovery on broken stock phones.

I feel this idea could be useful for a lot of us, not on our phones since we are likely rooted but on our family members and non tech friends stock phones. Which we usually end up fixing.
My idea if it is possible would be be for a "Plan B" type app for use after a broken screen, were the completely stock phone without ADB enabled needs data extracted.
My hope is that someone could make a app that is remotely installed from play.google.com that automatically turns on ADB debugging (if possible without root)
After that most data can be extracted with "adb backup" or adb pulls.
I can't count how many times this would of helped me in the past if it existed. Any dev up for the job? I am sure it would be appreciated by people.
Guess no one was interested in this idea.
shadowofdarkness said:
Guess no one was interested in this idea.
Click to expand...
Click to collapse
I think many of us are interested but one (so far) can help.
would be a good idea.... who ever was in need for something like that will be likely to pay for that... :laugh:
I could see this being a massive security risk. Sure the app could be handy, but it would also make stealing info from a phone very very easy.
So on that note, I don't think it will ever make it through, though I am sure there are ways.
Just install something like SMSBackup+: https://play.google.com/store/apps/details?id=com.zegoggles.smssync
Set it to automatically back up to their gmail, every so often, and then when it comes time to have to do repairs, you can get all of their calling/sms stuff back, since Google automatically deals with the contact infos.
it wouldn't be a security risk since the only way to install it would be from play.google.com which no one can do without your password. also pour planning with other software is not the point of this since I have been asked to recover data from devices by people that I honestly had no clue they owned the device before they broke it.usually family I don't see on s normal occurrence.
I've always been taught to keep a back up of anything you consider important.
Either way...
There are ADB backup solutions out there, there are recovery apps in the Playstore that will scan for missing or deleted files.
If you have access to the Playstore you have access to all the already available recovery apps. Why the need for an app that will basically root and unlock the device from behind their 'lock screen'?
If you have no direct GUI access, you want an app that you run on your computer that forces the phone connected via USB, to unlock and let you access whatever you want before you restore the phone. This is a massive security problem, because anyone could download that app, and use it to break into phones.
Sound like the 'prior planning' apps, are the best way to go.
I think you are missing my point. I know that prior planning is the best but it it not always possible when dealing with people so tech illiterate that even thought they own the device they barely understand it is not a iPhone because that is what a smartphone is to them.
My intended use is for physicaly broken phones (mainly screen) where I can't control any apps with the screen or turn on ADB from settings.
You thought on the security risk is wrong since out of the ways I can think of to install it via play store on the phone is would not be used since that would mean the attacker could just go into settings and do it the normal way. sideloading is impossible since it would be redundent due to that already needing ADB on.
The intended way via the web is safe enough since the attacker would need your email, password.
Do you hate the "Plan B" app that gps tracks your lost or stolen phone that is already in the play store and gave me this idea. It shows in the store as having between half a million and a million installs. Do you think those people should of went without such a app and lost their phone since they should of just pre planned since it is better.

Got my stolen phone back!!!! Things to be considered...

Hi developpers. I
My droid phone verson 4.1.2 was stolen last friday. But I was able to track the phone, confront with the thief and recover my phone two days later.
And that's why I am writing in this forum, because I want to share my experience and see if things can be done.....
The thief, stupid guy, removed all my sim cards (dual sim) and removed the memory card, but failed to do the necessary resets and did not remove my google account.
I don't want any lock screen system on my phone. And I strongly recommend everybody not to put a lock screen protection on your phone, because if there is one, the phone might just end straight into the trash bin, and you'll be left with no chance to find back your beloved Droid.
Let the thief in his beliefs it's his lucky day.... he has a nice unprotected full useable phone....
Also have Remotely locate this device enabled in the google settings, or get one of these hidden tracking apps on your phon.. Also enable allow remote lock and factory resets. The thief was so stupid he forgot to disable this feature of the phone.
Now here is my point. The Google Settings should be password protected. And it should be a shared password with the phone settings/Personal/ BACKUP AND RESET option.
At least, password protecting these two sections of the phone will avoid the thief to:
1. Disable the geo location of your phone
2. Doing a factory reset or remove any of the accounts on your phone.
Unless the thief is also a hacker, you will always be able to track your phone and get it back.
In my case, I tracked down the thief, up to 4m accuracy. I also have a Bluetooth speaker. I went to the Geo location and my Bluetooth speaker confirmed big time the phone was at this location.
Another thing to consider is to build INTO the OS itself is the option to track your phone. There are many programs on Google Play, but they can all be removed easily with a simple factory reset. This kind of software should be build in INTO the phone's OS itself.
Good luck to all of you who get your phone stolen!
oz457 said:
Hi developpers. I
My droid phone verson 4.1.2 was stolen last friday. But I was able to track the phone, confront with the thief and recover my phone two days later.
And that's why I am writing in this forum, because I want to share my experience and see if things can be done.....
The thief, stupid guy, removed all my sim cards (dual sim) and removed the memory card, but failed to do the necessary resets and did not remove my google account.
I don't want any lock screen system on my phone. And I strongly recommend everybody not to put a lock screen protection on your phone, because if there is one, the phone might just end straight into the trash bin, and you'll be left with no chance to find back your beloved Droid.
Let the thief in his beliefs it's his lucky day.... he has a nice unprotected full useable phone....
Also have Remotely locate this device enabled in the google settings, or get one of these hidden tracking apps on your phon.. Also enable allow remote lock and factory resets. The thief was so stupid he forgot to disable this feature of the phone.
Now here is my point. The Google Settings should be password protected. And it should be a shared password with the phone settings/Personal/ BACKUP AND RESET option.
At least, password protecting these two sections of the phone will avoid the thief to:
1. Disable the geo location of your phone
2. Doing a factory reset or remove any of the accounts on your phone.
Unless the thief is also a hacker, you will always be able to track your phone and get it back.
In my case, I tracked down the thief, up to 4m accuracy. I also have a Bluetooth speaker. I went to the Geo location and my Bluetooth speaker confirmed big time the phone was at this location.
Another thing to consider is to build INTO the OS itself is the option to track your phone. There are many programs on Google Play, but they can all be removed easily with a simple factory reset. This kind of software should be build in INTO the phone's OS itself.
Good luck to all of you who get your phone stolen!
Click to expand...
Click to collapse
This is why you should use Software to prevent this. There are lots of tracking/AntiThief Software available. Noone will put it to trash when its locked,
mynote said:
This is why you should use Software to prevent this. There are lots of tracking/AntiThief Software available. Noone will put it to trash when its locked,
Click to expand...
Click to collapse
The question is if software will really help....
You're lucky.
The thief, stupid guy. If He smart than, he can google and reboot your phone in to recovery, and he can Wipe all of your data.
And your phone will gone forever
andy-q said:
The question is if software will really help....
Click to expand...
Click to collapse
Yes. It is. 9 of 10 of my customers are happy and got ist device back after stolen/lost.
Just for the statistics..
The only shortcoming with the tracking/remote lock/wipe abilities is that they can still be defeated through CWM or whatever recovery is being used. That said, in most situations involving theft the thief doesn't have this level of knowledge to consider this step.
What's interesting to me is that so many people still steal phones for personal use, but I guess the stolen ESN database isn't far reaching enough yet to make it a stolen phone worthless for use yet. There is still some cash to be made selling them off for the hardware, but grabbing someone's phone doesn't seem worth a felony IMO.
As to the OP, a lock screen isn't worthless, especially if you have a non-removable battery. Most phones with them--an active lock screen I mean--either won't allow or can be set to disallow the phone being turned off without the code/pattern/password being entered, meaning if your phone is tossed in the trash it can still be recovered. That is one feature that will always make an integrated battery a plus. Even without one, there's the chance that the thief isn't going to take the time to pull the battery once he see's there's active security anyway.
MissionImprobable said:
The only shortcoming with the tracking/remote lock/wipe abilities is that they can still be defeated through CWM or whatever recovery is being used. That said, in most situations involving theft the thief doesn't have this level of knowledge to consider this step.
What's interesting to me is that so many people still steal phones for personal use, but I guess the stolen ESN database isn't far reaching enough yet to make it a stolen phone worthless for use yet. There is still some cash to be made selling them off for the hardware, but grabbing someone's phone doesn't seem worth a felony IMO.
As to the OP, a lock screen isn't worthless, especially if you have a non-removable battery. Most phones with them--an active lock screen I mean--either won't allow or can be set to disallow the phone being turned off without the code/pattern/password being entered, meaning if your phone is tossed in the trash it can still be recovered. That is one feature that will always make an integrated battery a plus. Even without one, there's the chance that the thief isn't going to take the time to pull the battery once he see's there's active security anyway.
Click to expand...
Click to collapse
yeah, true. Anyway. Even if you are just loosing your phone instead of getting stolen..
I consider that the thief will trash the phone when there is a lockscreen. Mostly the thief will try to look for "Reset-Possibilities". If you have a good AntiThief Software you may also disable the lockscreen when you feel that its the only way to get it back.
Anyway, there is Google Android Device Manager now which can get your device back easily..
When stolen/lost phone comes back I would check it for spyware
2 stolen phones never came back to me. :'(
Grievances. RIP .
alaminok said:
2 stolen phones never came back to me. :'(
Grievances. RIP .
Click to expand...
Click to collapse
I never got my stolen items back either but grats to the OP
This is the perfect thread for a question I've had ever since I came to the Android family from my iPhone.
On my Jailbroken iPhone I was able to download an app that took a picture with the front camera and sent it to the email of my choice every time the wrong password was entered, the photo came along with the GPS location of the phone and time.
Is there anything like this available for us
Sent from my SM-N900P using Tapatalk now Free
yoboyheartless said:
This is the perfect thread for a question I've had ever since I came to the Android family from my iPhone.
On my Jailbroken iPhone I was able to download an app that took a picture with the front camera and sent it to the email of my choice every time the wrong password was entered, the photo came along with the GPS location of the phone and time.
Is there anything like this available for us
Sent from my SM-N900P using Tapatalk now Free
Click to expand...
Click to collapse
Here Try Ceberus, its a paid app but worth it and you can have up to 5 devices at once, it even disguies itself as a system app you can view calls, text messages and even make the phone call any other phone track it via GPS..... a bunch of features
(Heres some features It has three ways to protect your device:
- Remote control through the website www.cerberusapp.com
- Remote control via text messages
- SIM Checker (for devices that have a SIM card): you will automatically receive alerts if someone uses your phone with an unauthorized SIM card
Remote control allows you to perform many operations on your device, like:
- Locate and track it
- Start a loud alarm, even if the device is set to silent mode
- Wipe the internal memory and the SD card
- Hide Cerberus from the app drawer
- Lock the device with a code
- Record audio from the microphone
- Get a list of last calls sent and received
- Get information about network and operator the device is connected to
- And much more!)
Link---> https://play.google.com/store/apps/details?id=com.lsdroid.cerberus
if thieves are smart, they would have been reading xda
but thanks
If thieves were smart, they would be educated enough to get a job and buy their own sh*t!
I use Cerberus as well on both my droids. Very neat app, and even more advanced than FindMyiPhone or whatever it's called again. Recommended with root for all features though.
Glad you got lucky and a non-tech savvy thief stole your phone.
cerberus
Cerberus celebrates 3rd birthday with free licenses for the next 30 hours
http://phandroid.com/2014/04/24/cerberus-3rd-birthday-free-license/
I had a phone lost/stolen. It is such a personal item it is like having your wallet stolen. Fortunately I never use the remember password feature for any apps, and have an encrypted password file I keep up to date and backed up.When I lost my phone I went to all the sites and changed my passwords. What a pia, but it is some peace of mind. Took many hours.
With t-mo, they have this feature available that takes a picture after 5 mis-trys and emails it along with the location, T-mo will also erase the phone and reset the lock screen pattern, It works pretty good because I have sent numerous pics of myself from fatfingerin the unlock.and checked the map to verify.
I prefer Cerberus...
oz457 said:
Hi developpers. I
My droid phone verson 4.1.2 was stolen last friday. But I was able to track the phone, confront with the thief and recover my phone two days later.
And that's why I am writing in this forum, because I want to share my experience and see if things can be done.....
The thief, stupid guy, removed all my sim cards (dual sim) and removed the memory card, but failed to do the necessary resets and did not remove my google account.
I don't want any lock screen system on my phone. And I strongly recommend everybody not to put a lock screen protection on your phone, because if there is one, the phone might just end straight into the trash bin, and you'll be left with no chance to find back your beloved Droid.
Let the thief in his beliefs it's his lucky day.... he has a nice unprotected full useable phone....
Also have Remotely locate this device enabled in the google settings, or get one of these hidden tracking apps on your phon.. Also enable allow remote lock and factory resets. The thief was so stupid he forgot to disable this feature of the phone.
Now here is my point. The Google Settings should be password protected. And it should be a shared password with the phone settings/Personal/ BACKUP AND RESET option.
At least, password protecting these two sections of the phone will avoid the thief to:
1. Disable the geo location of your phone
2. Doing a factory reset or remove any of the accounts on your phone.
Unless the thief is also a hacker, you will always be able to track your phone and get it back.
In my case, I tracked down the thief, up to 4m accuracy. I also have a Bluetooth speaker. I went to the Geo location and my Bluetooth speaker confirmed big time the phone was at this location.
Another thing to consider is to build INTO the OS itself is the option to track your phone. There are many programs on Google Play, but they can all be removed easily with a simple factory reset. This kind of software should be build in INTO the phone's OS itself.
Good luck to all of you who get your phone stolen!
Click to expand...
Click to collapse
Thank you so much for all the info. My biggest concern would be confronting the thief. What did you do? Wait for them to leave their house/apartment and confront them? Or did you confront them in some other way? I guess I would struggle between wanting my beloved phone back and being worried about the thief being a crazy person who might shoot me or something.
This Was Very Helpful
This is Very Helpful, We Wish We Had Known this when we had our phone stolen, I spent endless hours trying to locate my phone to no avail, thank goodness the Police were able to recuperate the phone, but only because the thief had stolen a number of other devices in the area, if I had known this information I would have saved myself hours of frustration !! BTW, Thank You For Sharing This !

Security of ios vs android , an important doubt.

Can the data in an iphone can be erased like android mobile by going to recovery mode by pressing 2/3 buttons of mobiles . If not then what happens ?
What? If you want to know about resetting an iPhone, ask in an iPhone forum?
Sent from my SM-G955U using Tapatalk
I don't want to reset an iPhone, I''m just asking a security case. Let's imagine our android being stolen, then the thief can certainly press the power and volume key and can easily wipe data and factory reset the mobile phone by just simply going to recovery. So it'll be impossible for us to find the phone.
But I'm asking in case of an iPhone is this same case possible? Can a thief just simply wipe the data and reset the mobile by pressing some keys and without unlocking the mobile ?
Gotcha. I haven't used an iPhone in years, so don't know.
I still think it's weird to ask an iPhone reset question in an Android forum though. You would probably get your answer in a minute if you just ask in an apple forum...
Sent from my SM-G955U using Tapatalk
Isn't the whole point of factory reset protection on android that it renders the device useless to someone who does this? Sure, it won't stop them actually resetting it, so you won't be able to track it afterwards, but the idea is that the thieves will learn that it's a waste of time.
Apple have something to prevent you just wiping a phone and making it yours, but I can't remember the details (i.e. whether it prevents the reset or, like the Google version, prevents you from using it afterwards).
Sent from my Pixel 2 using XDA-Developers Legacy app
I concur with @Large Hadron
On an iPhone, someone could enter the password incorrectly several times and the device would be wiped. It would not be usable, but it would be wiped. They could also connect the iPhone to a computer / mac with itunes and flash a factory image from there. Again, the device would be useless to them, but you wouldn't be able to recover your device from the thief.
Comparing an iPhone to a Pixel 1 or 2, both device could easily have the data wiped from the device. To that effect, the data is secure on both devices, which is by far the most important part. Recovering your lost / stolen device is an entirely different conversation. The benefit of an iPhone when lost / stolen is the device is a brick without the previous user's icloud email and password. Once it boots up, it asks for this before you can setup the phone. There is no way around this (without Apple's intervention). On a Pixel 1 or 2, the device could be wiped, but I believe the thief could then use the phone as their own. There is nothing that would "brick" the phone after a full data wipe.
If you are worried about your data, either phone is good (don't unlock bootloader and don't oem unlock). If you are worried about the hardware, you are responsible for that.
dbrohrer said:
I concur with @Large Hadron
On an iPhone, someone could enter the password incorrectly several times and the device would be wiped. It would not be usable, but it would be wiped. They could also connect the iPhone to a computer / mac with itunes and flash a factory image from there. Again, the device would be useless to them, but you wouldn't be able to recover your device from the thief.
Comparing an iPhone to a Pixel 1 or 2, both device could easily have the data wiped from the device. To that effect, the data is secure on both devices, which is by far the most important part. Recovering your lost / stolen device is an entirely different conversation. The benefit of an iPhone when lost / stolen is the device is a brick without the previous user's icloud email and password. Once it boots up, it asks for this before you can setup the phone. There is no way around this (without Apple's intervention). On a Pixel 1 or 2, the device could be wiped, but I believe the thief could then use the phone as their own. There is nothing that would "brick" the phone after a full data wipe.
If you are worried about your data, either phone is good (don't unlock bootloader and don't oem unlock). If you are worried about the hardware, you are responsible for that.
Click to expand...
Click to collapse
An Android phone works exactly the same way. If you wipe it from recovery, FRP (factory reset protection) kicks in, Once that happens, you are required to log on to the last account that the phone was used on (just like Apple). If you don't know the previous account and or password, there's no way you can use the phone.
You can factory reset from settings without triggering FRP though. Doing so removes all accounts from the phone and anybody can then use it. It's assumed since you are in settings, you've already logged on when you last booted the phone. A thief wouldn't be able to get into settings to reset it as he or she wouldn't know the password to unlock the phone.
robocuff said:
An Android phone works exactly the same way. If you wipe it from recovery, FRP (factory reset protection) kicks in, Once that happens, you are required to log on to the last account that the phone was used on (just like Apple). If you don't know the previous account and or password, there's no way you can use the phone.
You can factory reset from settings without triggering FRP though. Doing so removes all accounts from the phone and anybody can then use it. It's assumed since you are in settings, you've already logged on when you last booted the phone. A thief wouldn't be able to get into settings to reset it as he or she wouldn't know the password to unlock the phone.
Click to expand...
Click to collapse
Cool. I didn't know that. Thanks for that info
dbrohrer said:
Cool. I didn't know that. Thanks for that info
Click to expand...
Click to collapse
And if you really want to perfectly protect all your encrypted files, never open the bootloader. Because there's no way to flash something in the phone if the bootloader is closed. And there's no way to Open the bootloader without wiping all your personal data in the process.
Now if you decide to open the bootloader, files are still encrypted, so it's not a big deal.
Regarding the annulment of an Android device, when it is stealed: That happens with any modern Android phone. Basically, Google bans the phone from their cloud servers. A phone without google account is like an iPhone without Apple/iCloud accounts, almost useless.
P.S.: an open bootloader in Android is like a Jailbreak in iOS, but totally OFFICIAL and supported by Google/Android. You don't lose any functionality like with Jailbreak (if that thing still exist today...).
From my point of view, Google should ask PIN before accessing Fastboot mode and Recovery mode. but this is just to prevent a bad joke from a friend or something like that. (Not when your phone is lost forever, you just want to ban that device from Google servers so can't be used again).
robocuff said:
An Android phone works exactly the same way. If you wipe it from recovery, FRP (factory reset protection) kicks in, Once that happens, you are required to log on to the last account that the phone was used on (just like Apple). If you don't know the previous account and or password, there's no way you can use the phone.
You can factory reset from settings without triggering FRP though. Doing so removes all accounts from the phone and anybody can then use it. It's assumed since you are in settings, you've already logged on when you last booted the phone. A thief wouldn't be able to get into settings to reset it as he or she wouldn't know the password to unlock the phone.
Click to expand...
Click to collapse
Are you sure about that? I believe that factory reset still triggers FRP thus the black market trade in bypassing that check on lost and stolen devices.

Could a device be tampered with through mail

Hi!
During the last 6 months I've had a real problem with my online security. Bought a MacBook Pro which turned out to have had a root virus installed, infecting my Wi-Fi and thus all units who connected to it.
Took me a while to figure out...
First I had a brand new, out of the box Xiaomi MI 9 that got rooted OTA and I lost admin privliges etc.
From my experiences with that and from what I could gather I think it might have had something to do with this cloak and dagger virus thing, overlay and ****ing permissions hidden and yeah I really dont know, anyway.
Today I still worry about what happened. I know much is irrationell since I no longer have any Wi-Fi, instead I use unlimited data and got my self a new Oneplus 7T.
Not even enabled developer options nor touched the bootloader or usb debugging.
When I first bought it, (I had not been able to browse the internet nor search the info before bc of above) I ofc asked the store if they had any type of deal or knew of for a reliable VPN.
Unfortunatley, due to my lack of research, being locked out of my mail acc etc I ended up with a second license of Mcafee Internet security vpn, proxy.. (Probably have around 10-15 of those, containg True key and virus protection)..
This is where my fear comes in again.
Been trying to find an answer to this but I can't find enough to have piece of mind, or my 6 months "rehab" from the internet and technology made me a noob at googling.
Bear in mind, I also have and had Malwarebytes Premium, now I also use ExpressVPN instead of Mcafee. (Though I think I'll take advantage of this life time deal on Ivacy VPN today.).
Back to my first fear.
- Mcafee Internet security + Malwarebytes.
As mentioned I lost my mail accounts. Lost or lost, I reclaimed them and eventually locked them with a Yubico key.
Trying to retrive the Gmail on my new device I could swear my menu altered and Android all of a sudden allowed other users, ("All users get their own space, acc, etc").
Still having PTSD (how I refer to it) after this spring I wiped it all, didn't use it for a week, wiped it some more, hahah, and I begin to use it again.
I changed pass, added Yubico key, log out of all devices nor do have anything worth stealing. I wonder If there is anything I'd might have missed?
Ex, might be of topic.
When I try to restore my messenger password. I get the mail, enter the code and proceed to change pass when the code no longer is valid, permission #200 something. This ofc gets me thinking that my mail somehow might be forwarding my mail, syncing them? Gdrive have previously been set to auto sync and then I've unknowingly loaded malware in previously used phones.
I'll to summarize my question.
I guess I wonder if it could be dangerous in somehow or possible to install something on my new device through Gmail if I decide to log in again? Just saw my fb acc is schuduled for delete tommorrow, which is why I'm posting here, could use some advice.
While I'm at it I also am curious if there are any good info regarding Android security. Because I would like to flash a new rom without all bloatware, Google stuff etc and keep reading about safetynet and Selinux.
Also, good tip if there any on how to disable ssh, sftp, stf and all that? During this that happened I also found Samsungs Knox good, probably bc it wont work with overlay? Are there anything similar to Knox for a Oneplus? Many questions in one but I also wonder; I know that I once used my NFC security key one the Xiaomi, when it was infected. Could the key somehow been copied? Might be a bit over cautios,
0

Categories

Resources