worthless when there’s cameras in every corner that record as you unlock your phone all 40 times through the day
Comment on Ice obtains access to Israeli-made spyware that can hack phones and encrypted apps
rc__buggy@sh.itjust.works 2 days agoEvery early morning. Mine is right before my alarm goes off, so the notification sounds just meld.
Also, no one should be using biometric data to log into thier phones. 6 digit pin isn’t very obtrusive once you get used to it
WhyJiffie@sh.itjust.works 2 days ago
rc__buggy@sh.itjust.works 1 day ago
Fuck you too, buddy. You’re being recorded as you input your absurdly long password into your phone. They probably got it on camera. haha
WhyJiffie@sh.itjust.works 1 day ago
my password? which one? I very rarely type any passwords in public… but fuck me for having forethought!
rc__buggy@sh.itjust.works 1 day ago
This motherfucker runs to the bathroom to unlock his phone
lIlIlIlIlIlIl@lemmy.world 2 days ago
6 digit pin will be broken in less than 40 minutes by a graybox. A 6-digit pin is way more vulnerable than someone who uses a 30-digit password + biometrics
rc__buggy@sh.itjust.works 2 days ago
Sure bro, put a 30 character password into your phone every time you want to find the nearest fucking coffee shop.
lIlIlIlIlIlIl@lemmy.world 2 days ago
I just needed this info out there, I don’t really care what you do - I just need to make sure Lemmy stays safe and you’re spouting leaky insecurity disguised as best practices.
Best of luck
rc__buggy@sh.itjust.works 2 days ago
I think I just leaked a little right now. I don’t believe you have a 30 character unlock on your phone. That doesn’t make sense on a device someone uses multiple times a day in one hand at like a bus stop or something.
lIlIlIlIlIlIl@lemmy.world 2 days ago
If you’re in the USA and a cop gets your phone they’re going to pop it onto a graybox and will be digging through your shit up to their elbows. I wish I were wrong
rc__buggy@sh.itjust.works 2 days ago
That’s fine. I didn’t help them.
lIlIlIlIlIlIl@lemmy.world 2 days ago
With biometrics I only enter it once a week, at the very most. It’s insane to me that people want their phones to be less secure, but best of luck to you and your super secure TSA lock on your phone lol
rc__buggy@sh.itjust.works 2 days ago
'the fuck kind of biometric unlock is that? I’m actually curious what you’re using.
xthexder@l.sw0.com 2 days ago
That’s for breaking a bcrypt hash, and I don’t believe there’s any way to extract the pin hash from a phone since it happens inside a secure hardware layer (like a TPM). If it is possible, the attacker would most likely have to physically destroy your phone to get at it. To bruteforce a 4 digit pin with retry lockout timers, it takes 16 hours to try all combinations, according to a tool I found that auto-enters pins via usb keyboard emulation.
lIlIlIlIlIlIl@lemmy.world 1 day ago
What lockouts? appleinsider.com/…/iphone-hacking-tool-graykey-te…
AdamBomb@lemmy.sdf.org 1 day ago
The linked article doesn’t mention whether it can bypass the max attempt lockout or not. I’m not saying you’re wrong, but the article you linked does nothing to support your claim.
That said, an alphanumeric password is certainly more secure than a PIN, no doubt.