WiFi hacking?

Motionsickness

Well, I have been getting hacked a lot lately thus the switch to grapheneOS.

I was at a family members earlier today and connected to their WiFi network "A". Later, I'm walking through my building and notice my phone is trying to connect to that network. I thought maybe there was another network with that name but when I use a network analyser there is no such network.

A few minutes later, my session app starts using my microphone permission, even after I revoke its permission. Then, I go to vanadium and some like chrome:// pages are open showing some information about the browser.

Is it all connected? Am I hacked again? :( Please help, I don't know whether I am paranoid or have legitimate fears.

de0u

Motionsickness I was at a family members earlier today and connected to their WiFi network "A". Later, I'm walking through my building and notice my phone is trying to connect to that network.

Since radio waves are not visible, I assume what was noticed was something on the device's screen? What was observed?

Byku

Microphone display is a known upstream bug. None of the thing's you describe look like you being hacked.

wuseman

If you get hacked "a lot", then that implies you're doing something wrong, or you're being paranoid.

Why would Vanadium showing a message imply a hack? I don't get it.

Motionsickness

Well, there is such a thing as targeted hacking, I would think people here would understand that. I just wanted to know if what I experienced was indicative of that or could be explained away. Knowing there is a known bug involving the microphone is useful information. As for vanadium, I didn't load those pages or browse for them or anything, so I thought it was unusual. Thank you everyone for your input.

Motionsickness

de0u

I saw that my device was connecting to "Network A"

It said "authorizing..." but never actually connected. I later realized that was the same WiFi name as my sisters who I had connected to earlier in the day.

But when I scanned for networks using a WiFi analyzer I could not find a network with that name.

I now know the issue I had with my app accessing the microphone is a known bug on Android, so I feel better about that.

Thanks everyone, didn't realize this thread was still active.

Blastoidea

Many, if not most, of the folks who think they’re being hacked aren’t important enough.

Those who are, seldom hang around in public fora.

Eirikr70

In accordance to Blastoidea answer, someone who has the feeling of being hacked should specify why they would be hacked, and in what way the hacker would have the skills to do so. It is different whether you are an average Joe or a human rights defender or a ma boss or even just the former boy-girlfriend of a cybersecurity expert.

wildworld23

Blastoidea if you think hacking is only limited to "important" people you would be mistaken. The amount of tools and resources on the dark web gives access to anyone willing to do a little research. Most of us wouldn't consider it but itbis definitely possible

ryrona

To elaborate on @Byku answer, a hacker who did break into your device would not benefit from trying to connect to another Wifi, if there is already any kind of network connectivity to your phone. And nothing an attacker would do would cause an internal chrome page to open in Vanadium. So these two things are definitely not at all indicative of a successful hacking attempts. However, as you yourself was thinking, an attacker who lives close to you might attempt to make their router impersonate a Wifi network you have been connected to, so your device would auto-connect to their network, so they can spy on your activity. But since your device did not successfully connect to that Wifi network, that does not appear to be what happened here, or at least wasn't a successful attack.

The microphone indicator sometimes staying lit after you have used the microphone, staying lit until you reboot the device, is as mentioned a known upstream bug. If the microphone indicator lights up unexpectedly, when not having used microphone or been asked for microphone permissions, that on the other hand might be a strong indicator an app did access the microphone.

As far as I know, Session is not recommended for voice and video calls anyway, since they have not secured or implemented any anonymity for that yet. At least that was the situation a year ago. So ideally you would not grant microphone or webcam access to Session at all.

Motionsickness

ryrona

Thanks for this.

matchboxbananasynergy

@DRE8M AI text is forbidden: https://discuss.grapheneos.org/d/11951-ai-generated-text-is-forbidden-with-the-exception-of-automated-translation

userofgos

Motionsickness this still doesn't mean you were "hacked"

Is your sisters WiFi name a custom one or the default name setup with the router?

In general the average nontechnical homeowner/renter doesn't change the WiFi name from the default to a custom name. My grandparents are an example of this. They used the default name with the default router their isp provided them (with typically have a generic name setup already, i.e. "company/router name") which was saved on my phone. A month ago I was visiting a friend and in the neighbourhood there was a WiFi network with the same name and my phone was trying to connect to it but failed because it had a different password.

So in summary: If both your sister and another homeowner/renter used the default name or chose the same name, your phone would recognise it as a saved network and attempt to connect to it and either fail to do so because the password is incorrect, or successfully connect if there was no password.

And maybe you couldn't see the WiFi network when you scanned for it because you were out of range, or maybe it was in the condo/plaza next door. I'm not fully aware of your living situation, so I could also be wrong. But I still find it highly unlikely that it was a hack or even an attempt of a hack.