TrewMTE Mobile & Technology Exploration

Saturday, July 28, 2012

Clueful knows what iPhone apps are doing

For those wishing to retain privacy or those involved in eDiscovery, investigation, examination and/or evidence Bitdefender's Clueful identifies deviant apps on an iPhone currently running in memory allowing user's to identifying what an apps is doing and read an audit report accessed at Clueful Cloud. The audit report identifies:

which apps can access your address book;
which apps gather analytics in order to monitor you;
which apps can track your location;
which apps can access your Facebook or Twitter credentials;
which apps display ads;
which apps drain your battery through their improper use of background services, such as GPS or audio services.

This is one of those tools which highlights why mobile/smart phone examination is not simply limited to physical and logical data extraction but places an emphasis on examiners/investigators having additional capability to possess a wide range of information beyond harvested data and provide interpretations about possible activities on a particular handset.

Faqs - http://www.cluefulapp.com/faq.html

NFC Phone Hacking

"...presentation included a demonstration of the use of a malicious NFC device which, simply when placed close enough to a user's phone, resulted in a complete compromise of the phone, or what security people call "remote code execution."
http://www.informationweek.com/byte/news/personal-tech/wireless/240004386?

Extra links about NFC and enabled devices, which add more emphasis about the possibility of an NFC attack:

Near Field Communications
http://en.wikipedia.org/wiki/Near_field_communication

Windows Mobile 8 going NFC
http://nfctimes.com/news/microsoft-signals-support-telcos-its-nfc-enabled-mobile-wallet-windows-phone-8

Orange UK went NFC in 2011
http://nfctimes.com/sites/default/files/orange-factbox-june-12-3.jpg

France Telecom - Orange mobiles that are NFC enabled
http://translate.google.co.uk/translate?sl=auto&tl=en&js=n&prev=_t&hl=en&ie=UTF-8&layout=2&eotf=1&u=http%3A%2F%2Fwww.cityzi.fr%2Fles-mobiles-cityzi&act=url

GSMA - Mobile NFC
According to the GSMA, "Mobile Network Operators(MNO) across the world are now rolling out NFC-based services, fuelling the next wave of mobile innovation. Commercial services are live in France, Japan, South Korea, Tanzania, Turkey and the UK."
http://www.gsma.com/mobilenfc/

Mobile Phone Forensic Examination

Greg Smith has over 30 years (1985 to 2016) experience in handling digital and mobile telephone evidence in criminal and civil investigations and providing services to blue-chip clients in the UK. Our unit the DEEU conducts acquisition and harvesting of data from:

SIM/USIM/MMC Cards
Mobile/Smart Phones/Tablets
Satellite/WiFi
Computer Forensics/network

Forensically recovering saved and deleted data using a range of hardware and software tools to obtain or image physical data or download logical data.

Cell Site Analysis investigations and evidence since 1988.

Contact:
The DEEU
Email: trewmte@gmail.com