• Steve Anonymous
    link
    fedilink
    English
    522 years ago

    I want one of these flipper devices but I’m sure I would get in a lot of trouble with it

    • VegaLyrae
      link
      fedilink
      282 years ago

      If you cannot trust yourself, then do not provide yourself temptation

    • Skull giver
      link
      fedilink
      English
      92 years ago

      If you only attack your own devices, you’ll be fine. I you only attack your friend’s devices for a prank of sorts and they can laugh about it, you’ll be fine.

      If you’re targeting random people, you’re probably breaking all kinds of cyberlaws and can go to jail in extreme cases.

      It’s quite trivial to detect the origin of radio signals, so if you install it somewhere or regularly perform attacks against your neighbours, police can find you if they care for some reason.

    • 520
      link
      fedilink
      8
      edit-2
      2 years ago

      If you use it only against your own devices, you’ll be perfectly fine.

  • Echo Dot
    link
    fedilink
    English
    112 years ago

    I wonder if I could get work to buy me one and claim that I’ll use it for pen testing.

    My coworkers would 100% definitely plug it in if they saw it lying around just to see what it was. They’re real bad.

  • TWeaK
    link
    fedilink
    English
    5
    edit-2
    2 years ago

    You should probably keep your wifi and bluetooth set to switch off automatically anyway, what with how much they’re used for tracking.

    • XbSuper
      link
      fedilink
      English
      232 years ago

      Doesn’t work if you have Bluetooth devices on all the time (like a smartwatch or earbuds).

      • TWeaK
        link
        fedilink
        English
        22 years ago

        Earbuds aren’t on all the time, so you can enable when needed and set it to disable after a few min of activity.

        I can see that smart watches might be a problem. They should perhaps use a dedicated protocol for always on devices like that.

    • @Monument@lemmy.sdf.org
      link
      fedilink
      English
      6
      edit-2
      2 years ago

      I don’t know if turning off Bluetooth protects against flipper attacks (Edit: Nah.), but unless something has changed, it (sadly) doesn’t preserve your privacy.

      It’s not really documented, as far as I can tell, but Bluetooth low energy stays on, even when you toggle Bluetooth off for both iOS and Android. As of iOS 15, even turning off iPhones means the phone is still trackable. (Unsure about Android on that front.) Apple’s ‘Find my’ network uses Bluetooth low energy, same as Bluetooth beacons.

      Confused developers: one, two, three.

      • TWeaK
        link
        fedilink
        English
        32 years ago

        That sounds like disabling Bluetooth on iphones doesn’t disable Bluetooth LE. Sucks for iPhone users.

        • @Monument@lemmy.sdf.org
          link
          fedilink
          English
          32 years ago

          I mean, it sucks for everyone that can’t or don’t want to run homebrew OS’s.

          The “One” link I shared above indicates the behavior became standard in Android 8 and iOS 11. They were released in August and September 2017, respectively.

          • TWeaK
            link
            fedilink
            English
            22 years ago

            Yeah I’d like to think AOSP doesn’t have that flaw.

    • ijeffOPM
      link
      fedilink
      English
      52 years ago

      Tracking my HR and steps via smartwatch!

    • Polar
      link
      fedilink
      English
      82 years ago

      I almost always use it. For my smart band, PC notifications, wireless Android auto…

        • Polar
          link
          fedilink
          English
          122 years ago

          Ok, well I’m not going to stop using my fitness band or Android auto because I’m a paranoid person. Might as well never leave your home and never use any devices connected to the internet.

            • Polar
              link
              fedilink
              English
              22 years ago

              DId somEbOdy SaY yOu sHouLd?

              If you’re not implying that, then your reply was pointless.

                • Echo Dot
                  link
                  fedilink
                  English
                  1
                  edit-2
                  2 years ago

                  Right but your arguement of “well turn it off then” doesn’t work. Because people need it to be on because they use it, because it’s a useful technology.

                • Polar
                  link
                  fedilink
                  English
                  12 years ago

                  I want to keep it, otherwise all of my everyday devices become paperweights. Thanks.

              • sadreality
                link
                fedilink
                -2
                edit-2
                2 years ago

                Show us on the doll where the bad comment hurt you, boy.

    • @Monument@lemmy.sdf.org
      link
      fedilink
      English
      62 years ago

      Looks like that’s an ineffective approach.

      I commented elsewhere with an explanation and a bit of speculation. I did later confirm that even ‘disabling’ Bluetooth doesn’t stop the attack.

      The attack method works even when Bluetooth has been disabled using airplane mode from the control panel, which may surprise you. In which case, you’ll be shocked to discover that disabling Bluetooth this way, erm, doesn’t. Instead, you’d need to disable it directly from your device settings or run your iPhone in Lockdown Mode to prevent these advertising pop-ups from being received.
      Source

      Assuming similar on Android, it’s possible, but not that easy toggle everyone knows about.

      • sadreality
        link
        fedilink
        5
        edit-2
        2 years ago

        Correct both android and iOS don’t disable it unless manually done in BT settings.

        As you walk around your BT gets tagged and they sell your data.

        Think of a setting like a mall ;)