My GrapheneOS was cracked by Belgian police

b8r2

hemingway FYI I was responding to someone else saying there was a contradiction there.

What was the reaction from the employee(?) after they entered the duress pin?

After the duress PIN was entered, the device remained powered on and no wipe occurred. From a technical standpoint, nothing happened on the device itself to indicate success it didn’t power off, reboot, or otherwise respond. Any reactions from those feds or others present are irrelevant to the sequence of events; the key point is that the native duress wipe failed to execute.

n3t_admin

b8r2 okay, I call the bluff here: so after the "feds" entered the (maybe incorrect) duress PIN, they were like: oh, it's wrong, have a nice day Sir! They didn't ask for a different PIN, they didn't retry it, they didn't ask why it was wrong? So many questions...

hemingway

b8r2 After the duress PIN was entered, the device remained powered on and no wipe occurred

Did it say "incorrect pin entered" or did it unlock the device? That's why I'm wondering about the fed's reaction since you mentioned you could not see what happened after the pin was entered.

b8r2

Novalissoide neither ADB nor Shizuku were ever used on the device. The issue occurred entirely on a standard, official GrapheneOS installation with default system settings.

Byteang3l

b8r2 what surprises me is you allegedly have had a warrant for pre-meditated murder since the creation of this post according to your attorney, yet here you are readily talking to us on this forum. How do you manage that especially with an ankle monitor on?

Novalissoide

b8r2 standard, official GrapheneOS installation with default system settings

Then explain the mentioned Usb-wipe?

b8r2

Novalissoide The USB-wipe mention was in response to an earlier comment, not something I used on the device. The device itself was running standard GrapheneOS, and the issue occurred solely with the native duress PIN, which failed to trigger the secure wipe.

b8r2

Byteang3l Even if the duress PIN didn’t trigger, this doesn’t automatically mean the device was easily accessible. AFU mode still keeps encryption keys in memory, the bootloader was locked, and accessing raw data would require very sophisticated hardware attacks that are not standard for police, and not something the Belgian government has access to, and certainly not in the time span mentioned here. Without detailed logs or evidence, it’s hard to accept this as proof of a GrapheneOS compromise, it could be an unusual one in a million bug, or a one in a billion flaw with your specific titan chip, but it’s not a widespread vulnerability as it stands now. If you can provide evidence down the line, we absolutely implore you to share it here when it becomes available, if the admins wanted this thread gone it already would be, so it should be here in the future when that information becomes available.

I understand your point AFU mode, a locked bootloader, and standard encryption do make unauthorized access difficult under normal circumstances. The issue I’m reporting is specific to the native GrapheneOS duress PIN failing to trigger the wipe. I’m not claiming a widespread vulnerability, only that in this case, the duress action did not execute as designed, and the data became accessible afterward.

I have shared all the factual details I can at this time. If additional evidence becomes available later, it will be provided. Until then, this post reflects exactly what happened on this device, without speculation about broader hardware capabilities or general security of GrapheneOS.

Byteang3l

b8r2 and what we want to know is how this data became accessible afterwards, there's a vital piece of this story missing between duress allegedly failing and your phone being unlocked and fully accessible, duress failing doesn't explain that.

b8r2

n3t_admin okay, I call the bluff here: so after the "feds" entered the (maybe incorrect) duress PIN, they were like: oh, it's wrong, have a nice day Sir! They didn't ask for a different PIN, they didn't retry it, they didn't ask why it was wrong? So many questions...

Due to operational security, I cannot share every detail about the device or what occurred, but the key fact remains: the duress PIN was entered, the secure wipe did not execute, and the data was subsequently accessible.

Novalissoide

b8r2 The USB-wipe mention was in response to an earlier comment, not something I used on the device

No further questions from me.

Hathaway_Noa

b8r2

You had USB wipe on your phone, which means you had wasted app infrastructure on your phone. Don't pretend it's not true. Also the way you write and speak makes me think you are not a criminal phisser but rather someone who is trying to make grapheneOS look bad.

b8r2

Novalissoide No further questions from me.

What makes you think ADB or Shizuku were used on the device?

b8r2

Hathaway_Noa You had USB wipe on your phone, which means you had wasted app infrastructure on your phone. Don't pretend it's not true. Also the way you write and speak makes me think you are not a criminal phisser but rather someone who is trying to make grapheneOS look bad.

The mention of a “USB wipe” was in response to an earlier comment it was not something installed or used on my device. I did not use Wasted or any third-party app. The issue I’m reporting concerns only the native GrapheneOS duress PIN, which failed to trigger the secure wipe. Nothing else contributed to the outcome.

b8r2

Byteang3l I don't have a ankle monitor.

Novalissoide

b8r2 well, the use of Wasted. And that Adb, Shizuku and Developer options causes around two thirds of the issues with screenlock that I tried to help users with.

Hathaway_Noa

b8r2 you literally said on Twitter:

"the USB duress also failed"

Byteang3l

b8r2 Basically i was suspected of a murder. I went to jail, got out on a ankle monitor because there was not enough evidence.

Your comment literally says you have an ankle monitor, or did they take it off after your warrant was issued without arresting you? This story has more holes than Swiss cheese buddy.

b8r2

Byteang3l Ankle monitor was taken off roughly 4months before the warrant.

b8r2

Novalissoide none of those were used. The device was a standard GrapheneOS installation

b8r2

hemingway The device did not display “incorrect PIN” nor did it unlock.

b8r2

Hathaway_Noa This was a response to someone, i most likely confused with it

indigomadelin Insults don’t change the facts of what happened. I’ve stated the technical details I can share, and personal attacks don’t add anything to the discussion.

b8r2

Byteang3l and what we want to know is how this data became accessible afterwards, there's a vital piece of this story missing between duress allegedly failing and your phone being unlocked and fully accessible, duress failing doesn't explain that.

The factual part I can confirm is that the duress PIN was entered, the secure wipe did not execute, and the data ultimately became accessible. I cannot provide specifics beyond that.

« Previous Page Next Page »