• 0 Posts
  • 49 Comments
Joined 1 year ago
cake
Cake day: June 11th, 2023

help-circle

  • Did you read the article? There were a couple cases were very early Android phones were modified to appear to be off but stayed on. This is fairly common knowledge, but it’s not particularly hard to defeat.

    Everything your phone does requires a deterministic amount of power. Spying on people in particular requires even more power than normal because you need to run the power hungry gps in addition to the modem and cpu.

    If you turn off the device it should be significantly cooler to the touch, not a degree above ambient. If it’s at 100% charge but a power bank with a read out is showing it still charging, that’s a problem. Is the bootloader image different? You can verify that to some extent. When you turn it back on has it been drawing down the battery anyway? Does it require an unlock password instead of biometrics as it normally would (assuming a particularly sloppy setup)?

    This isn’t rocket surgery, in reality nobody is modding everyone’s phone to stay on forever because unless you’re an absolute troglodyte (aka the fucking old school mafia bosses they did this to) it’s going to be painfully obvious your phone is acting weird.








  • Intrinsically/semantically no but the expectation is that the texts are encrypted at rest and the keys are password and/or tpm+biometric protected. That’s just how this works at this point. Also that’s the government standard for literally everything from handheld devices to satellites (yes, actually).

    At this point one of the most likely threat vectors is someone just taking your shit. Things like border crossings, rubber stamped search warrants, cops raid your house because your roommate pissed them off, protests, needing to go home from work near a protest, on and on.


  • RF analysis is kinda difficult, you’d need to take the car out into the middle of nowhere and have access to fairly good equipment. A tinySA would maybe work if you’re very patient but data transmissions are generally very bursty so it may be difficult to nail down where it’s coming from in a sane amount of time.

    One option would be to try to figure out if there are any FCC filings for your car. All filings will have pictures of whatever module is being used and what antenna systems it uses which may give you a good idea of where it is and what it looks like. There should be an FCC ID mentioned somewhere at the beginning or end of the cars manual. Googling that should bring up some stuff.


  • Not wrong, but the issue is complex. Drones are very obviously one of the bullets in any upcoming conflict. It’s not really about spying and phoning home, it’s that it would be insane to try to tell China “hey, don’t invade other countries mkay?” And then say “oh also we need ammo to stop you but we don’t have the ability to make brass cases or gunpowder anymore, can you send us some”.

    Now, while we “can”, to some extent, manufacture components and complete systems, the thing about a war is that it’s basically a wizard duel but with money hoses. You can’t win if the Chinese are producing slaughter bots for $500 ea and the US equivalent is $100,000 (literally). Congress is praying that this will light a fire under US and more friendly foreign manufacturing supply chains to invest more because they might have a chance of breaking into a lucrative market. That said, it probably just paves the way for a two tiered market where China makes their slaughter bots for $500 and the US makes them for $50,000 but all the civil use cases get caught in the cross fire for the short to mid term…so everyone still loses, just harder.



  • I’m adjacent to the industry. This is dumb but I understand the reasoning. We’re getting left behind in the electronics world. Nobody is creating hardware startups because every few months there’s a viral blog post with a “hardware is hard” title on HN and none of the VC assholes want to fund anything but web based surveillance capitalism ad tech because it’s a surefire way to make money. Even if you do get funded and you’re US based you’re absolutely doing all your manufacturing in China if you’re remotely consumer facing (b2big-b has different rules). That means Chinese companies get all the benefits of all the labor from your highly trained engineers when they get the design files. If you try to build anything at volume in the US you have strikingly few options for boards and parts. Everything is whole number multiples of fucking PCBway and half the time it’s lower quality unless you’re paying aero-defense prices which is the only business anyone wants.








  • I’d argue the year of the Linux desktop passed years ago and now it’s just a saturation game. Most serious SW development is now on Linux laptops/desktops, Android owns the mobile space and versions are starting to make huge inroads in the laptop space. You can buy gaming systems running it trivially now.

    Conversely, casual users of windows are dying off, fewer non technical people are using desktops for anything at all. Only institutional users are buying Windows keys and they’re some of the easiest to get on Linux because of the cost savings, particularly if you run Linux server infrastructure, a fight we already won over a decade ago.