This is likely snake oil, but tons of people are boosting it.

Ultrasonic mic jammers are real & a fraction of the price. What they claim is new: using AI to detect mics.

There are ways to find hidden mics. The TSCM space (bug sweepers) has tons of tricks that seem like pure magic. Have you ever listened to transistors turn on & off inside of an electronic device? Seen what a non-wireless camera sensor sees from across the room because every copper trace on a PCB is still an antenna?

…I have 😎. Hell, the first time I heard the “heat beat” of one of my naughty little OMG Cables, it was kinda reminiscent of hearing the heartbeat of my literal unborn kids! 😂

… anyway, you also have thermals, magnetics, etc. But most of these tricks require that you either sweep a detection device within a few cm of the bug, or you have a bulky antenna pointed directly at the bug. This “Deveillance” device is a small stationary puck that you place in the center of the space you want to protect.

So what can you do with a small stationary object to detect mics? Well, anyone who’s used an ultrasonic jammer knows that most of the space is going to be filled with ultrasonic emitters, especially if you want the claimed 2 meter range. So that leaves a pretty small space for the detection electronics.

You could do wireless protocol discovery. WiFi, BLE, etc. This would be easy. But it’ll only find a fraction of hidden mics.

You could do wideband RF sweeps to detect any active radio emissions. Here, AI could actually help identify based on raw signal. But this already feels like a stretch for this product. Lots of legit wireless mics are going to slip through the cracks with the minimal hardware that fits in a small puck.

But let’s say we make it this far. What about every mic that is not actively transmitting? Saving to local storage for later retrieval, etc. Well, you could use your ultrasonic emitters to create saturated pulses into the mics, which in turn will create electrical impulses down the copper lines between the mic & whatever catches the signal. Every bit of copper, no matter the length, is also an antenna. So you catch those emissions and look for signals that match your own ultrasonic emissions. Packing equipment sensitive enough to do this inside a little puck though…. Ehhhh

And after all that, you are still blind to passive MEMS microphones.

And more so: there are already ways to defeat ultrasonic jammers too.

However, this device doesn’t claim to protect you against bugs and other hidden mics. It’s very tightly constrained to:

“prevents smart devices and AI recorders from picking up your voice”

That’s an incredibly narrow scope. Existing ultrasonic jammers cover that scope pretty easily.

https://x.com/_MG_/status/2028864606568067491

I really want to emphasize that their own marketing copy has a VERY narrow scope of what devices they work against. And that does NOT include the very wide range of microphone-containing devices that everyone is assuming.

However, the replies from the product team don’t seem to help remind people of this limitation. In fact, it reads like dodges that let people’s minds run wild. I’ll touch on that as I add more posts to this thread.

Context: I rarely say something is 100% impossible. There is always a way. It’s a motto that I have built a lot of my recent work on!

I do think these claims are extreme enough that they warrant strong evidence and probably 3rd party testing. There’s a lot of “weird vibe” as well. And more importantly, the security/privacy space is filled with “solutions” that create dangerous situations for consumers by not clearly showing the limits.

Anyway, on to some of the replies from their team…

People were concerned that gov record retention laws were being broken due to the use of Signal. This picture shows that’s not the case!

See the “TM SGNL” on screen? That’s a Signal wrapper specifically for maintaining archives of the messages.

telemessage.com/mobile-archive…

I can’t comment on security implications of the wrapper, but I suspect my prior criticism of “probably not using Signal securely” are fairly off base considering how this alters the threat model.

Yes. I’d love to know what “I have confirmation … its turned off” refers to as well :p

Looks like TeleMessage was probably procured and rolled out under Biden. There are public records for it.

I have a slightly different take on these leaked signal messages of the Trump admin planning the attack on Houthis…

Once again, it’s that nobody seems to use Signal SECURELY. If they had, this leak would have been less likely.
🧵1/n

The Atlantic article on this touches on policy of where & how these comms should happen, but completely misses the Signal failure that started this.

It starts right at the beginning. A new connection request was made by Mike Waltz, and then immediately added to a signal group. Waltz did NOT do anything to verify the identity of the person (else he’d quickly notice it was a journalist), and clearly did not verify the Signal Safety Number over a trusted channel (which means it’s susceptible to interception).

I doubt they are using things like Registration Lock either, which means anyone can hijack their Signal accounts with a simple SIM swap… which should be assume an automatic threat when the telcos have admitted China has access to everything.

The failure to do this also points to a strong indication that this is likely a recurring pattern of OPSEC failure when using Signal. The consequences could be much more severe than this leak.

🧵2/n

We constantly hear about “Signal being broken” and it’s always seems to be from people who don’t know how to securely use Signal.
🧵3/n

https://twitter.com/_mg_/status/1876133681544433958

Anyone can track the physical location of Bluetooth devices across the earth, & it flew under the radar.

All you need is the MAC, which is trivial to get by just using a BT scanning app neatly the target.*

Then you guess (90% success rate) a matching key that makes Apple’s FindMy network think this device happens to be a lost AirTag.**

That’s it! The FindMy Network then tells you the latest location. It was discovered by George Mason University & called nRootTag. Apple has started to roll out some sort of change, but it’s unclear how impacting it will be or how long it will take. GMU researchers worry it could take years to be effective.

*unless it’s Bluetooth 4.2+ and is using the optional privacy features.
**requires running the MAC address through a GPU cluster, which can also be done in advance by building a rainbow table.

Details are a bit sparse, but more will come in August, according to the GMU post:

cec.gmu.edu/news/2025-02/f…

Exactly. It doesn’t matter who the manufacturer of the Bluetooth device is, it’s findable by the FindMy network!

There are a few ways Apple can minimize this I believe. Heavier restrictions on how a devices is reported as lost. Blocking lookups of devices not rotating their key (which will probably break a lot of non-Apple devices using the FindMy network). Etc.

“recognized as malware” is the end of the analysis? Bruh…

At least share the exe so others can check it out and either validate this or put the nail in the coffin.

There are so many ways something gets flagged without it being malicious itself. Down to being simply unsigned.

The chances of this being intentionally malicious are very low. And you haven’t done nearly enough to demonstrate otherwise.

That doesn’t mean it’s necessarily safe. You paid pennies above the cost of the hardware via AliExpress. That gets you the lowest effort software too, where security is not a concern.

Imagine buying DIY canned food from an alley and then pearl clutching when it’s not FDA approved… and then acting like the makers are spies trying to poison you. 🙃
Prove it!

Don’t get me wrong. China is an intentional adversary in many avenues. But the threat posed by AliExpress & Temu is economic.

If you are buying lowest cost hardware, you aren’t getting any effort beyond basic functionality. Safety and security aren’t part of that. Don’t confuse that for intentionality.

COULD these things be leveraged by a 3rd party to undermine your security? Very likely. But you are just about as intentionally complicit in that as the seller.

I’ve ranted about this before:

When we added C2 capabilities to OMG Cable, people would say “But I’d notice it on my network!”

I said: yeah, but would you notice it on your neighbor’s wifi, free cafe wifi, etc? 😈

Also, here is a free nightmare: when wifi drops due to power loss, those battery powered IOT devices do ALL kinds of useful things if you’re in range.

Oh absolutely. Most places won’t notice. Especially with the added MAC spoofing and the C2 traffic looking like misc web traffic. There are lots of options before needing to use a nearby network, or supplying your own.

https://twitter.com/uk_daniel_card/status/1861451286937280804

The guest net is often a great option too!

https://twitter.com/thesl3ep/status/1861445864457146606