I’m running Graphene on a Pixel 6. I lost it and someone opened it somehow and called two of my contacts to give it back.

I’m a bit confused how this even happened. When I got the phone back, they were going through my contacts. I checked app usage stats and they went through a banking app (not missing money), maps, signal, etc.

Is there a way to figure out how they even unlocked my phone?

  • jet@hackertalks.com
    link
    fedilink
    English
    arrow-up
    1
    ·
    11 months ago

    Unrelated. Have you considered using a work profile?

    That way you can have two factor authentication when unlocking your phone. You could use a PIN code for the main unlock, and a biometric for apps in the work profile. That way you would have to have both something you are, and something you know.

      • jet@hackertalks.com
        link
        fedilink
        English
        arrow-up
        3
        ·
        11 months ago

        Settings, security, more security settings:

        Under work profile and security:

        Disable - use one lock for work profile and device screen

        Configure - work profile lock, use a different code, only needed at boot time.

        Enroll finger prints for biometric unlock.

        • Pantherina@feddit.de
          link
          fedilink
          arrow-up
          1
          ·
          11 months ago

          Thanks, I use Workprofile for crap apps, but if I wouldnt need those this would be a good idea!

          • jet@hackertalks.com
            link
            fedilink
            English
            arrow-up
            0
            ·
            edit-2
            11 months ago

            You could put the crap apps in the main profile, and then the important apps in the work profile. Then the important apps would have two factor

            • Pantherina@feddit.de
              link
              fedilink
              arrow-up
              1
              ·
              11 months ago

              I am not really leaving my device locked haha, or if, then I would also always have the work profile locked. Also I dont trust Androids init system, apps just randomly run in the background and there still is no way to completely prevent that. So I keep them in the work profile

              • jet@hackertalks.com
                link
                fedilink
                English
                arrow-up
                0
                ·
                11 months ago

                On Grapheneos I’ve been using the disable app option aggressively, to have installed apps that only run when I need them. I do have to enable them from the app settings, which is a little annoying but the hotel booking app doesn’t need to be running all the time.

                  • jet@hackertalks.com
                    link
                    fedilink
                    English
                    arrow-up
                    1
                    ·
                    11 months ago

                    I see why they did it. If you disable Google News, you don’t want to see it in your launcher. So that makes sense for the original ASOP developers

                    I think now, because disabling is a first-class feature for any app, you should be able to indicate you want to still see it in the launcher even though it’s disabled.