I’m running Graphene on a Pixel 6. I lost it and someone opened it somehow and called two of my contacts to give it back.

I’m a bit confused how this even happened. When I got the phone back, they were going through my contacts. I checked app usage stats and they went through a banking app (not missing money), maps, signal, etc.

Is there a way to figure out how they even unlocked my phone?

    • jet@hackertalks.com
      link
      fedilink
      English
      arrow-up
      3
      ·
      11 months ago

      Settings, security, more security settings:

      Under work profile and security:

      Disable - use one lock for work profile and device screen

      Configure - work profile lock, use a different code, only needed at boot time.

      Enroll finger prints for biometric unlock.

      • Pantherina@feddit.de
        link
        fedilink
        arrow-up
        1
        ·
        11 months ago

        Thanks, I use Workprofile for crap apps, but if I wouldnt need those this would be a good idea!

        • jet@hackertalks.com
          link
          fedilink
          English
          arrow-up
          0
          ·
          edit-2
          11 months ago

          You could put the crap apps in the main profile, and then the important apps in the work profile. Then the important apps would have two factor

          • Pantherina@feddit.de
            link
            fedilink
            arrow-up
            1
            ·
            11 months ago

            I am not really leaving my device locked haha, or if, then I would also always have the work profile locked. Also I dont trust Androids init system, apps just randomly run in the background and there still is no way to completely prevent that. So I keep them in the work profile

            • jet@hackertalks.com
              link
              fedilink
              English
              arrow-up
              0
              ·
              11 months ago

              On Grapheneos I’ve been using the disable app option aggressively, to have installed apps that only run when I need them. I do have to enable them from the app settings, which is a little annoying but the hotel booking app doesn’t need to be running all the time.

                • jet@hackertalks.com
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  ·
                  11 months ago

                  I see why they did it. If you disable Google News, you don’t want to see it in your launcher. So that makes sense for the original ASOP developers

                  I think now, because disabling is a first-class feature for any app, you should be able to indicate you want to still see it in the launcher even though it’s disabled.