Profile picture
Elliot Alderson
@fs0c131y
, 17 tweets, 5 min read Read on Twitter
THREAD: If you have a @SamsungMobile phones, whatever your phone model, an attacker with a physical access to your phone can capture your network traffic without your consent. Let me show you

⬇️⬇️⬇️
Step 1: Open the Calculator app
Step 2: Type (+30012012732+
The DRParser Mode app is launched

Step 3: Type *#9900#
The Service Mode app is launched. You have already a lot of cool options:
- run dumpstate/logcat/modem log
- enable silent logging from boot
- media db dump
- enable seclog
- ...
Wait why these 3 buttons are in black?

Low battery dump, tcp dump start, IMS logger, it looks like cool things 😁
tcpdump is a command-line packet analyzer, it is use a lot to capture network traffic tcpdump.org
When I click on the "tcp dump start" button, a pop up appears. They implemented an OTP mechanism
Wait a second, my phone is not connected to Internet, so this OTP mechanism is a local mechanism. Time for some magic
I reversed the ServiceMode app and created a small proof of concept with the CheckOTP method.
Now, I can run my POC, enter the key given in the pop up and hop tcpdump is running on the phone aka all the network traffic is captured
To retrieve the capture:
1. Click on "TCP DUMP STOP"
2. Click on "COPY TO SDCARD"

The capture is available in /sdcard/log/tcpdump/tcpdump_[interface]_[timestamp].pcap
Bonus: You can also record the victim' screen for 1 hour
Step 1: Click on the "IMS LOGGER" button (one of the 3 black buttons).
IMSLogger+ is launched

Step 2: Click on "Filter Options"
Step 3: Enable the "Record screen" option and voila!
The video will be available in /sdcard/ims_logs/
These issues has been disclosed responsibly to Samsung 3 weeks ago
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Elliot Alderson
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @fs0c131y see all

Profile picture
Elliot Alderson
@fs0c131y
1 day after my tweet, the @BJP4India "fixed" this issue. Read this thread, laughs guaranteed! 1/6

⬇️⬇️⬇️
Previously, in a Javascript file called home.js, they used 123456789 as an encryption key aka secret passphrase aka encryption password.

2/6
The old version of home.js is available on @pastebin

3/6
pastebin.com/qeBAHJQW
Read 6 tweets
Profile picture
Elliot Alderson
@fs0c131y
Twitter pro tip: We are to discuss calmly, to be nice to each other, to share knowledge. If you are rude, insult me or send me threats, I block you in the second.

The best way to handle haters and trolls is isolation. Don’t feed them, they seek recognition.

1/3
Two advantages to this “automatic” blocking:
- My Twitter experience is quite better
- They know I blocked them, if they want to “annoy me” with their comments, they will need to create another profile. The effort is on their side.

2/3
On average, I block ~5 people per day due to hateful comments/DMs or threats.

But Twitter is also an awesome place. For 1 hateful comment, I’m receiving 5 nice messages. Thank you for support!

3/3
Read 3 tweets
Profile picture
Elliot Alderson
@fs0c131y
This is the "Chowkidar" answer to my yesterday tweet. Haha, I laughed so hard...

FYI, "encryption password" == "encryption key" go back to school Mr Fact Hunt 🤦‍♂️
I quote: "encrypt data [...] just an extra layer of security"... JUST?! 🤦‍♂️🤦‍♂️🤦‍♂️
Yes, they updated the JS file... Unlike you they understood why having 123456789 as an encryption key, or password up to you, was not a good idea

Old version: pastebin.com/qeBAHJQW
New version: pastebin.com/xkhndWVC

Read 5 tweets

Related threads

Profile picture
Revue Sesame
@RevueSesame
Vu d’Occident, les grandes catastrophes naturelles étaient jusqu’ici souvent le triste destin des pays de l’hémisphère sud. Cyclones, incendies, inondations, sécheresse viennent mettre en question nos systèmes agricoles. C’est le #Thread du mercredi. Prenez les cirés.
Donc le dérèglement du climat amène aujourd’hui ce type de catastrophes, remarquables par leur ampleur, jusque dans nos jardins. Ces derniers mois fourmillent d’exemple avec, tout près de chez nous les inondations meurtrières dans l’Aude.
ladepeche.fr/2019/02/28/ino…
Ces deniers jours, c’est vers le sud est de l’Afrique que les regards se sont tournés avec le cyclone Idai qui a tué plus de 1 000 personnes en quelques jours. Et rendu très complexe la situation sanitaire des populations locales

bloomberg.com/news/articles/…
Read 28 tweets
Profile picture
Victory®
@VictoryOlaleye
GOD, His people & The World’s Kingdoms/Empires

- What’s gone before.
- What is to come.
- The Gospel of the Kingdom.

* Missed the Rapture? What to Expect.

#Thread
Ever since God created the Earth in Genesis 1, He willed it to be ruled by Man whom He created; hence Adam was the first world governor & emperor and he was so, under God.
But by disobedience to God & obedience to Satan, Adam changed masters; and though the governing of the earth was still through human agency, Satan became the god of this world’s systems (2 Cor. 4:4).
Read 117 tweets
Profile picture
IjeomaUcheibe
@UcheibeIjeoma
I’m not one to bring my dissatisfaction with customer service by Nigerian companies to social media or Twitter but I will not allow my intelligence to be insulted or bullied when I know my rights.

#Thread
I have three websites - ijeomaucheibe.com, labarin.com and Bagusng.com hosted by @qservershosting and for two years I have taken Shitty customer service without complaint till i moved my domains to another registrar last year.
Now to the crux of the matter, I reached out to them this afternoon when I was trying to back up the Wordpress site for BagusNG.com on the Cpanel and I got an error message from the Softaculous App Installer. They said it was because my disk usage had exceeded.
Read 13 tweets
Profile picture
Sami Schalk
@DrSamiSchalk
Thread alert! If you want to learn more in #disabilitystudies there are a lot of open access resources. Let’s start with Disability Studies Quarterly (dsq-sds.org), one of the leading journals in the field, which is 100% open access.
Other open acces journals include Disability in the Global South (dgsjournal.org) & Review of Disability Studies (with a delay: rds.hawaii.edu)
I personally link to my articles on my website & anything that is behind a paywall I put up as soon as I’m allowed under the publishing contract. I particularly recommend the convo between @JulieMinich, Jina B. Kim & me in the open access journal Lateral.

samischalk.com/articles/
Read 8 tweets
Profile picture
AeroDynamic Women
@AeroWomen
#Thread of responses from women in aerodynamics to the question, 'what would you like to see in order for women's career progression in your field to be sustained and better supported?'

Responses incl. career flexibility, mentoring and more women in leadership roles #WomeninSTEM
1. "I think young female engineers need to see more female role models and mentors in my field. Having a visible example of someone that looks like you and is succeeding in their field is important. Having an opportunity to meet with a mentor like that can be very powerful."
2. "I would like to see that any career promotion is based on own merits and value added to the company or the society independently of the gender. I want that women are measured with the same rules as men and are given equal opportunities."
Read 68 tweets
Profile picture
William
@wimgz
Making a thread of makers & entrepreneurs who inspired me, and what they taught me.
#thread
👇
Strong marketing game, super hard work, can stream for 24 hours and currently leading a new streamer movement with the #24hrstartup challenge.
Make it bigger than yourself.
👉 @thepatwalls
Made the awesome getcssscan.com which works perfectly and saved me hours and hours.
Make a simple, helpful product.
👉 @gvrizzo
Read 21 tweets

Trending hashtags

#Hindutva #JNU #FalseAllegations #VisualMarketing #mylifewithstan #ableism #Influencers #Microsoft #MSDyn356 #VideoMarketing #NeoFaceReveal #digitaldisruption #Facts #Influence #PAYtriots #academia #MacronLeaks #BestOf #ApolloHospital #Relationships #WeshallOvercome #Epstein #disabilitystudies #Photovoltaique #TransitionEnergetique
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!