• General

  • Can anything shield IMSI from IMSI catchers?

r134a Is this warning implemented somewhere on carrier level, or on the phone itself?
If on the phone itself, wouldn't it be a nice addition, especially on GrapheneOS, to reimplement this 'feature' perhaps after a toggle, if seen as feasible in the first place?

You may be interested in this recent post about an EFF research project: https://discuss.grapheneos.org/d/20515-meet-rayhunter-a-new-open-source-tool-from-eff-to-detect-cellular-spying/

      de0u Wow, thanks for pointing me to that thread! i've managed to miss it. This seems a very interesting project, i'll look some deeper into it and possibly install it & contribute data to it, depending on my local laws which i first have to research.

        I suspect the price of this device will go up significantly soon.. I wonder what's the sim compatibility since it looks to be a Verizon specific device.

          0xsigsev Yeah, just found out that it is a Verizon specific device, consequently i don't find availability anywhere in europe. Step 2 would have been finding out if it would be actually compatible with GSM in europe, and step 3 researching local laws, but since i can't find any availability in europe, i guess it ends here.

          I wonder though, as in their article they aim to collect data outside of the us aswell, but currently only support that verizon specific orbic router, how they had this in mind? Perhaps there will be more devices supported as the project grows, with actual availability outside the us?

              r134a I think the 'outside US' was an afterthought and they mainly focus on US.. Obviously I am not trying to shit on them on anything for that, just giving my opinion. I will most probably order one anyway and see if it is sim locked, or what's more important whether it works with the bandwidths here where I live..

              I also am considering reaching out to EFF asking about the possibility to use other devices.

                  0xsigsev If u are in the position then to report back, i would highly appreciate it.

                    @0xsigsev Hi, perhaps u are keeping an eye aswell on rayhunter and u are already aware, but i wanted to let u know anyway, since u mentioned u would probably order that orbic router, there's a good chance it will be possible to run in the near feauture to run it on a device more accesible in europe: TP-link M7350.

                    There's a fork being created to make it run specifically for that device, and there's already a PoC it running on it: https://github.com/m0veax/rayhunter-tplink-m7350/blob/main/PoC.md

                      r134a Thanks, I haven't had much time to look into it further so this heads up is really appreciated. Was going to order the orbit next week, so instead will wait for the fork to mature a bit.

                        Chipper portable 4g router

                        I wouldn't use one of those. The project has a thread about a lot of what's being discussed in this thread and touches on mobile routers here: https://grapheneos.social/@GrapheneOS/113319956422621755. Some relevant quotes about mobile routers are as follows:

                        Dedicated Hotspot devices aren't good for privacy/security.

                        [B]ear in mind that carrying around a Wi-Fi access point (AP) is the opposite of private. An AP has a persistent MAC even if it's random upon creating the AP such as making a hotspot with a phone. Wi-Fi does not have MAC rotation like Bluetooth Low Energy privacy extensions.

                        GrapheneOS uses per-connection MAC rand and per-connection DHCP as improvements over the standard Android Open Source Project. The MAC still remains the same while connected, and an AP isn't going to cycle until it's reset. Wi-Fi does not try to do what BLE privacy extensions do.