Attack_Dolphins I think the best way to prevent such "attacks" will be to leave Bluetooth, WLAN and NFC switched off and only switch them on when necessary. I don't know to what extent reading the IMEI is a security-relevant attack
Hardening GrapheneOS for Anonymity After Flipper Zero IMEI/EID Takeove
Attack_Dolphins You're misdiagnosing what happened. This doesn't make sense.
GrapheneOS Then please assist me in properly diagnosing exactly what happened when my non-GOS Pixel 7a was taken over. My pursuer had complete access to my accounts via the phone that was removed from me. I attempted a factory reset via Google and reported the IMEI to my carrier. I received a replacement Pixel 7a and it was taken over within days. What combination of the device and the accounts allowed for the takeover and how do I now use the once compromised Pixel 7a? Will installation and hardening of the GOS environment be sufficient? Will the pursuer be able to locate the phone via IMEI tracking?
Attack_Dolphins What makes you believe your devices were taken over?
GrapheneOS My ESET communicated a stolen SIM which was a e-SIM at the time; the find the music app was listing music I hadn't heard; there were search results that we not relevant to me; the Google Takeout yielded a 2 separate Device ID's where DEVICE ID#1 listed one of my IMEI's; DEVICE ID#2 listed both of my IMEI's. This account was 4 days old when it was taken over. I know that my pursuer owns and uses a Flipper Zero with ease. That might be biasing my perspective, however.
Attack_Dolphins This doesn't add up to your device being exploited and a Flipper Zero doesn't give someone the ability to do advanced remote exploits.
Attack_Dolphins The device which seems to have been taken over was not GOS. I am recently coming to understand the availability of custom ROM's for mobile devices which is a result of many months of issues with account takeovers. I am a "newbie" to say the least.
GrapheneOS Can you help me understand what the 2 separate Device ID's with the same IMEI's does tell me where it's for the same Google account? I want to understand the vulnerabilities I consistently have in order to regain my security. Will Graphene provide me with the security if my IMEI is known to my pursuer?
FYI: My pursuer is not remote and, in fact, I lived with him.
Attack_Dolphins How do you know they didn't just put malware on your device?
Attack_Dolphins Go through the official install procedure for GrapheneOS at https://grapheneos.org/install/web, verify that the verified boot key hash matches in that part of the instructions and then verify the device with Auditor.