Mobile Sim Router - Privacy

dasaint100

Hi,

Using Graphene OS on a airplane mode Pixel connected to a personal sim mobile router that runs through a vpn.

Can the SIM be easily tracked that is in the router and can the router or sim give away information that means it can be tracked easily in the future.8

DeletedUser115

dasaint100 Are you running your modem in your home? If so they can easily track you where you sleep at night and spend the most time.

[deleted]

dasaint100 what sim in the router? Is it traceable? How is it paid for

dasaint100

[deleted] - the sim would most likely be traceable. Less so to the general public?

paul_le_roux

@dasaint100

Can the SIM be easily tracked that is in the router

if you don't take extra steps to prevent it - yes, the provider will know that you inserted the card into the router.

(edit: it's about TTL in general. keyword: "hotspot/tethering throttling"; random link found via search: https://redlib.northboot.xyz/r/Android/comments/8p69ez/bypassing_verizons_unlimited_plans/ )

the router or sim give away information that means it can be tracked easily in the future.

To simplify slightly - the GSM baseband (router) has an IMEI number. The SIM card has an IMSI number.
Changing your IMEI number is doable on some hardware, although illegal in most parts of the world.
Changing the IMSI number is doable, but it is definitely a different level of operation and you can basically say that changing the number is only possible by changing the card.

dasaint100

paul_le_roux

Will using a VPN with the sim router Wifi for the airplane mode Graphene be pretty robust in public areas vs hackers? Or will the IMEI of the router and ISMI of the data sim used in the router be easily found and used in the future to track?

Would you say that using a public WiFi through a router with a VPN and sim free would be safer against hackers? Still with the Airplane mode Graphen
e?

de0u

dasaint100 I don't think "hackers" and people who want to "track" you are generally the same threat.

If you are worried that a "hacker" at a coffee shop will break into your bank account through your phone, probably keeping your phone up to date (including retiring it when support ends) and using a reputable VPN is pretty good.

If you want to use Facebook, an app provided by an entity that really is interested in knowing where you are so they can show you targeted ads, they are not snooping Wi-Fi traffic in coffee shops or deploying IMSI catchers. They would like to know your IP address, which you can deny them via a reputable VPN service. But they can also track you based on who you message, which hours of the day you use the app, which users and topics you follow, etc.

On most days most coffee shops likely contain zero "hackers", and your phone may never in its lifetime see an IMSI catcher. A small number of people are targeted by criminal gangs, state actors, etc., and may need to take extensive measures. But most users who are tracked by industrial mechanisms are tracked by behavior (search topics, web sites visited, people friended), not by IMEI.

dasaint100

de0u

Thanks for your response.

It's not facebook, google or gov I'm thinking of.

It would be criminals/hackers.

Just trying to find the most secure way to use phone in public. Whether in public WiFi with or own sim router connection. With airplane mode. What steps can I take to stop tracking through any means?

de0u

dasaint100 Just trying to find the most secure way to use phone in public. Whether in public WiFi with or own sim router connection. With airplane mode.

Criminal hackers aren't really in the business of breaking into phones in public places, largely because it's inefficient -- they need to go to the public places, which takes effort and potentially exposes them to being caught. Criminal hackers would vastly prefer to stay home and use mass attacks against the unwary via web sites, SMS messages to random numbers asking people to install malware, etc. (see recent example). I am not claiming there is zero hacking risk on public Wi-Fi, but if you are using GrapheneOS and a VPN and a modern browser like Vanadium (that will warn you about non-https connections) you are in pretty good shape against random criminals sharing your public Wi-Fi trying to attack people -- assuming you run into such a person, which it's unclear you would.

Public Wi-Fi used to be much more dangerous (say, 10 years ago), but modern endpoints, especially iOS and Android, are much more careful about threats posed by local network actors.

dasaint100 What steps can I take to stop tracking through any means?

Criminal hackers aren't really in the tracking business. Meta is in the tracking business, Google and Apple are, even arguably PayPal.

Cellular carriers are inherently in the tracking business, and sometimes they have sold the information they've collected to shady people. Maybe some of them are doing it right now! But for most people it's hard to just stop using cellular networks.

Governments often like to track people, but you said you're not particularly worried about that.

Sometimes somebody decides to track a particular person for a particular reason -- maybe a vengeful former spouse. If somebody hired a criminal hacker to track you, then it would make sense to worry about being tracked by criminal hackers, but this is not common.

Honestly I think the risk of criminal hackers attacking you via public Wi-Fi (or via cellular-modem exploits) is much lower than the likelihood of criminal hackers attacking you by phishing your passwords or tricking you into installing malware. And I think the risk of criminal hackers tracking you is genuinely very low.

The situation is different if you have reason to believe that somebody is willing to spend genuine time, effort, and money to attack you in particular. If a nation-state or a criminal gang decides to get you in particular, to track you in particular, to figure out what kind of devices you in particular are using and which software releases your particular devices are running, and to deploy expensive zero-day attacks against you in particular, extensive measures may be necessary.

Just my opinion!

paul_le_roux

@"dasaint100"

Will using a VPN with the sim router Wifi for the airplane mode Graphene be pretty robust in public areas vs hackers? Or will the IMEI of the router and ISMI of the data sim used in the router be easily found and used in the future to track?

Safest method would be GSM router connected via ethernet cable with wi-fi disabled. If your threat model is that high.

Would you say that using a public WiFi through a router with a VPN and sim free would be safer against hackers? Still with the Airplane mode Graphen
e?

Safer than Graphene as router? I don't know. It will certainly be easier to "repair IMEI", which will give you a new identity when changing the SIM card at the same time.

[deleted]

paul_le_roux Your Answer really helped me, thank you! I had some Questions about what you described, I hope you can help me.

My Question is: Which is more secure?

WLAN Access Point (Having it home without Sim-Card, via Ethernet Cable and maybe Wifi disabled if it is possible)
Portable WLAN Router (With Sim Card, Wifi disabled and just via Ethernet Cable)
I like the portable Version because I can take it with me but I have concerns about the Sim-Card. And I'm wondering if Home based WLAN Access Pointed Router without Sim-Card is more secure/private?
Or GrapheneOS Second Phone with Sim-Card as Hotspot and with VPN, instead of Mobile Router.

Or is there a more secure approach? And what would it like be? You would help me so much!

GOS21606

I think you hide your IMEI of your main device from the telecom-network, so you can use public WIFI and otherwise you use your MIFI/ other phone?

And what about silent SMS are you protected against this threats when you are using a MIFI?