zlacker

[return to "Chinese authorities install app on phones of people entering Xinjiang"]
1. olliej+it[view] [source] 2019-07-02 17:54:45
>>el_dud+(OP)
So it’s android only?
◧◩
2. xenosp+Ev[view] [source] 2019-07-02 18:09:52
>>olliej+it
iOS is probably looked at as well, but has to be done manually since there's no way to just do it with a simple app.
◧◩◪
3. z33k+cx[view] [source] 2019-07-02 18:19:51
>>xenosp+Ev
I'd wager that they have a enterprise certificate to sign the iOS app with. Then it's a matter of sending the spy victims to a URL, installing the app and granting access to photos/ location/ whatever.
◧◩◪◨
4. tomovo+Zx[view] [source] 2019-07-02 18:24:44
>>z33k+cx
Nope.. the user would also have to open Settings and explicitly mark the vendor certificate as trusted.
◧◩◪◨⬒
5. LocalH+RF[view] [source] 2019-07-02 19:13:26
>>tomovo+Zx
It says the devices were unlocked then the device was connected. I would assume the device is in the custody of the Chinese authority at this point. Thus, they can just go into Settings and trust the cert.
◧◩◪◨⬒⬓
6. olliej+Ay3[view] [source] 2019-07-03 22:19:24
>>LocalH+RF
Changing trust settings on device requires the password.

Better question is: what are they able to pull off the device while it's unlocked?

[go to top]