With the continuous upgrading of encryption technology, the offensive and defensive battles of device data cracking are also escalating. For example, when fighting a crime, the police may need to check the contents of the suspect’s mobile phone.
Forensic tools represented by Cellebrite were born for this application. However, considering that related technologies can easily be abused by third parties or hackers with ulterior motives, KoreLogic security researcher Matt Bergin, who pays attention to data security, has specially developed an Android application called “LockUp”.
Matt Bergin, a senior researcher at KoreLogic Security, has been working on products such as Cellebrite for the past few years. At the Black Hat Asia annual cybersecurity conference last week, he showed this small invention called LockUp for the first time.
Join Our RealMi Central Channel On Telegram
Matt Bergin said in an interview with Gizmodo: The idea of using LockUp is not to provide a safe haven for criminals, but to reveal potential technical problems with digital forensics tools that some law enforcement agencies rely on.
Recently, Moxie Marlinspike, CEO of the encrypted chat application Signal, also discussed a similar topic in a blog post, that is, how to manipulate forensic equipment to destroy relevant evidence. Essentially, every time a user downloads a new program to the phone, the ears of this monitoring software will stand up. The focus of this research is the hash value of the file itself and the certificate metadata associated with the application.
Once LockUp knows the specific information, it will restore the target device to factory settings through programming means. In short, the software scans all-new programs downloaded on the device and triggers data self-destruction when it recognizes any code related to Cellebrite and clears it completely.
Of course, you don’t expect to be able to find it in an official app store like the App Store or Google Play. After all, as proof of concept, Matt Bergin aims to share the relevant code on GitHub. Those who are interested have to do it themselves to complete the compilation.
If you like our news and you want to see such news even further, then follow RealMi Central on Telegram (RealMi Central, Xiaomi, Apple, Realme, Samsung, Microsoft, OnePlus, Huawei/Honor, Android 12), Twitter, Facebook (Page) (Group) & Instagram.