I am concern about access to user data (pictures, videos, emails, app data, etc.) on my unlocked bootloader phone if phone is lost or stolen,. As I understand it, with the bootloader unlocked, one can install custom rom and thus bypass screen lock. Does this mean that with the new OS it can access the user data? Does phone being encrypted make a difference?
robchow said:
I am concern about access to user data (pictures, videos, emails, app data, etc.) on my unlocked bootloader phone if phone is lost or stolen,. As I understand it, with the bootloader unlocked, one can install custom rom and thus bypass screen lock. Does this mean that with the new OS it can access the user data? Does phone being encrypted make a difference?
Click to expand...
Click to collapse
If you don't need root lock it.
Sent from my Pixel using XDA-Developers Legacy app
robchow said:
I am concern about access to user data (pictures, videos, emails, app data, etc.) on my unlocked bootloader phone if phone is lost or stolen,. As I understand it, with the bootloader unlocked, one can install custom rom and thus bypass screen lock. Does this mean that with the new OS it can access the user data? Does phone being encrypted make a difference?
Click to expand...
Click to collapse
there is Android Device Manager to control phone remotely then you can erase it and keep your personal data safe.
:good:
robchow said:
I am concern about access to user data (pictures, videos, emails, app data, etc.) on my unlocked bootloader phone if phone is lost or stolen,. As I understand it, with the bootloader unlocked, one can install custom rom and thus bypass screen lock. Does this mean that with the new OS it can access the user data? Does phone being encrypted make a difference?
Click to expand...
Click to collapse
They would need to know your password to get into TWRP to decrypt the storage(assuming you're encrypted) They don't need to flash a custom rom to see your stuff, they can view it by connecting the phone to their computer and enable mtp mode in TWRP. If you are that concerned, you probably should lock your bootloader after making sure you are 100% stock.
I really dont see any reason for concern.
Say your phone has a password, but your bootloader is unlocked, here are the only things you can really do.....
A: Use fastboot to flash twrp. however, once they get into twrp, they will still need to know your password. And twrp will not allow
mtp or adb access until it is has decrypted.
B: Use fastboot to Flash a factory image. But once they boot the phone, it will ask for the email and password
of the original account that was on the phone, and all data will be gone.
C: Use fastboot to flash a factory image without the -w paramter. All data will still be there, and they really have gained nothing.
i dont see any real risk.
noidea24 said:
I really dont see any reason for concern.
Say your phone has a password, but your bootloader is unlocked, here are the only things you can really do.....
A: Use fastboot to flash twrp. however, once they get into twrp, they will still need to know your password. And twrp will not allow
mtp or adb access until it is has decrypted.
B: Use fastboot to Flash a factory image. But once they boot the phone, it will ask for the email and password
of the original account that was on the phone, and all data will be gone.
C: Use fastboot to flash a factory image without the -w paramter. All data will still be there, and they really have gained nothing.
i dont see any real risk.
Click to expand...
Click to collapse
No matter the path, if your data is intact they still need your pattern.
Thank you all for your input and knowledge dissemination on how a unlocked bootloader affect user data.
noidea24 said:
I really dont see any reason for concern.
Say your phone has a password, but your bootloader is unlocked, here are the only things you can really do.....
A: Use fastboot to flash twrp. however, once they get into twrp, they will still need to know your password. And twrp will not allow
mtp or adb access until it is has decrypted.
B: Use fastboot to Flash a factory image. But once they boot the phone, it will ask for the email and password
of the original account that was on the phone, and all data will be gone.
C: Use fastboot to flash a factory image without the -w paramter. All data will still be there, and they really have gained nothing.
i dont see any real risk.
Click to expand...
Click to collapse
Not using the -w parameter will keep the user data intact; understood, thank you. If that is the case, will the theft be able to access user data if user data partition is encrypted?
By removing -w even your lock screen will still be there, so no. No security concerns.
If you want it to be secure then lock your bootloader, otherwise it will be insecure. It's a trivial matter to someone knowledgeable to get into your files.
Sent from my Pixel XL using Tapatalk
superchilpil said:
If you want it to be secure then lock your bootloader, otherwise it will be insecure. It's a trivial matter to someone knowledgeable to get into your files.
Click to expand...
Click to collapse
I guess the question is how if they cannot decrypt the file system?
pcriz said:
I guess the question is how if they cannot decrypt the file system?
Click to expand...
Click to collapse
If the right person stole you're phone and wanted to waste the resources needed to decrypt the info, they could. Since it's possible, it's considered a security risk. Although let's be real. It's highly unlikely that it would ever happen. Unless you're some vip or something crazy like that.
toknitup420 said:
If the right person stole you're phone and wanted to waste the resources needed to decrypt the info, they could. Since it's possible, it's considered a security risk. Although let's be real. It's highly unlikely that it would ever happen. Unless you're some vip or something crazy like that.
Click to expand...
Click to collapse
In that case I doubt even a bootloader would matter.
pcriz said:
In that case I doubt even a bootloader would matter.
Click to expand...
Click to collapse
Yes it would. You can't access anything unless you factory reset. Then it's all gone, decrypting won't do a thing. Reset is a total wipe. Brand new device.
Sent from my Pixel using XDA-Developers Legacy app
bobby janow said:
Yes it would. You can't access anything unless you factory reset. Then it's all gone, decrypting won't do a thing. Reset is a total wipe. Brand new device.
Click to expand...
Click to collapse
I think you are missing the context of my statement. No information system is 100% impenetrable, so even with a bootloader if someone really really wanted in a system and had the means they can crack it. That's just general rule of security.
The other side of the discussion is how safe is the data. Well if you factory reset the data is plenty safe because it's wiped.
Seem what your statement is talking about is basically can someone use the phone they aquired, in that instance yes but that's also why we have insurance.
pcriz said:
I think you are missing the context of my statement. No information system is 100% impenetrable, so even with a bootloader if someone really really wanted in a system and had the means they can crack it. That's just general rule of security.
The other side of the discussion is how safe is the data. Well if you factory reset the data is plenty safe because it's wiped.
Seem what your statement is talking about is basically can someone use the phone they aquired, in that instance yes but that's also why we have insurance.
Click to expand...
Click to collapse
Well multiple things going on now. If data can be extracted from a locked bootloader device I'd like to see proof of concept. I'm not saying it can't be done.
By the time a person wiped the device you'd probably have the IMEI blacklisted so the device will be useless.
Sent from my Pixel using XDA-Developers Legacy app
bobby janow said:
Well multiple things going on now. If data can be extracted from a locked bootloader device I'd like to see proof of concept. I'm not saying it can't be done.
By the time a person wiped the device you'd probably have the IMEI blacklisted so the device will be useless.
Sent from my Pixel using XDA-Developers Legacy app
Click to expand...
Click to collapse
Data extracted from a bootloader locked device, data decrypted from an encrypted device, same argument when it comes to proof of concept.
Not to mention you realize bootloaders have been defeated before, its the whole reason bootloader bounties exist. Frankly given some of the exploits that have gotten around bootloaders, it seems in some cases defeating a boot loader would be easier than decrypting.
Every google bootloader probably has the same signed key (in relation to BL version)
pcriz said:
Data extracted from a bootloader locked device, data decrypted from an encrypted device, same argument when it comes to proof of concept.
Not to mention you realize bootloaders have been defeated before, its the whole reason bootloader bounties exist. Frankly given some of the exploits that have gotten around bootloaders, it seems in some cases defeating a boot loader would be easier than decrypting.
Every google bootloader probably has the same signed key (in relation to BL version)
Click to expand...
Click to collapse
Is it really the same thing or proof of concept? How do you extract data from a locked bootloader device even pre-decryption? Whereas if you have encrypted data then decrypting is a matter being able to hack that encryption algorithm. I see that as two distinct operations.
If you mean defeating bootloaders so you can unlock, I'm not arguing that point at all although if you recall the Samsung S4 could not be unlocked after the first firmware update no matter how much they tried. I think they were able to get around it by some other method but the bootloader was never unlocked again. (btw I have the original S4 still unlocked and never updated the firmware) The Verizon bootloader is not unlockable either on their OEM device. I'm not sure if it's possible but no one is even working on it afaik. But I digress. Even if you manage to unlock the Pixel VZW bootloader or any locked bootloader for that matter, the device is wiped clean on the unlock. So there is no data to decrypt thus making accessing it moot as far as compromising your data.
That is why I keep the bootloader locked and the oem switch off. (On my 5x since my VZW oem switch is grayed out) With a start-up pin and ADM at the ready in case it's lost I feel pretty safe storing my data on the device. Pretty safe, not perfectly safe.
bobby janow said:
Is it really the same thing or proof of concept? How do you extract data from a locked bootloader device even pre-decryption? Whereas if you have encrypted data then decrypting is a matter being able to hack that encryption algorithm. I see that as two distinct operations. )
Click to expand...
Click to collapse
You don't simply "hack an encryption algorithm", you can hypothetically "hack" or exploit a BL. That's not how it works when are you using randomly generated keys tied to the unlock method. Essentially you would need their unlock method and how it translates into the keys generated on the device.
You ask for a proof of concept, the concept of bootloader broken has been proven time and time again.
I'm still looking for am instance where a BL unlocked device has been stripped of it information and decrypted so it can be read by another device.
You could also lock your device away in a safe and it would be safer than any device created but you lose certain experiences.
Essentially your implication as I read it is this guy wide open for his data to be stolen if his bootloader is unlocked and encryption provides no protection.
pcriz said:
You ask for a proof of concept, the concept of bootloader broken has been proven time and time again.
Click to expand...
Click to collapse
No that's not what I was saying or asking. I know a bootloader can be broken and unlocked, I've seen that. The concept I was referring to was unlocking a bootloader with OEM unlock turned off and then, after unlocking it, accessing the data that was there before the unlock. That to me is the security of a locked bootloader.
pcriz said:
I'm still looking for am instance where a BL unlocked device has been stripped of it information and decrypted so it can be read by another device.
Click to expand...
Click to collapse
That would be interesting to me as well.
pcriz said:
You could also lock your device away in a safe and it would be safer than any device created but you lose certain experiences.
Click to expand...
Click to collapse
Be great on battery life too.
pcriz said:
Essentially your implication as I read it is this guy wide open for his data to be stolen if his bootloader is unlocked and encryption provides no protection.
Click to expand...
Click to collapse
Well not really. If the bootloader is unlocked then the security is compromised as far as I'm concerned. You can flash a new rom without wiping data and I'd say that would be an easy target. You'd still need to decrypt but the challenge would be multiples of easier.
But one thing I'm not entirely clear on since I'm not unlocked or rooted. Someone mentioned that you couldn't log into the phone if you don't have the proper account credentials. How exactly does that work? On my 5x I can wipe the system but keep the data intact and have full access. What am I missing?
bobby janow said:
But one thing I'm not entirely clear on since I'm not unlocked or rooted. Someone mentioned that you couldn't log into the phone if you don't have the proper account credentials. How exactly does that work? On my 5x I can wipe the system but keep the data intact and have full access. What am I missing?
Click to expand...
Click to collapse
Hello,
Do you have OEM unlock enabled?
I have an unlocked bootloader and i usually leave OEM unlock enabled. This way, when i wipe clean and want to test some features or modifications, i simply reinstall and can skip the setup part.
If OEM unlock is disabled, you'll have to add the same account used before the phone has been wiped.
Is that what you were referring to?
Cheers...
I have a Moto E XT25052 Tracfone. After months of research, I have been unable to find any answers on how to root this phone or how to acquire a physical image. Apparently, everything I am trying to do requires an unlocked bootloader. I even tried to pay to have it rooted only to be told its unrootable. Im actually trying to restore deleted text and data. Have tried purchasing many restoration programs that didnt work. And now am studying mobile forensics. I even purchased a Cellebrite Touch only to find out it doesn't support the Moto E and if it did ..bootloader stills needs to be unlocked to acquire physical image. Any help that will actually work would be greatly appreciated. I have exhausted myself looking for the answers. Thought its time to seek help.
Songbird47 said:
I have a Moto E XT25052 Tracfone. After months of research, I have been unable to find any answers on how to root this phone or how to acquire a physical image. Apparently, everything I am trying to do requires an unlocked bootloader. I even tried to pay to have it rooted only to be told its unrootable. Im actually trying to restore deleted text and data. Have tried purchasing many restoration programs that didnt work. And now am studying mobile forensics. I even purchased a Cellebrite Touch only to find out it doesn't support the Moto E and if it did ..bootloader stills needs to be unlocked to acquire physical image. Any help that will actually work would be greatly appreciated. I have exhausted myself looking for the answers. Thought its time to seek help.
Click to expand...
Click to collapse
If you have a windows machine LMSA is the easiest way to get the firmware,
and it's really the best way to flash the firmware if the bootloader is locked.
Rescue and Smart Assistant (LMSA)(Motorola/Lenovo Only)
Rescue and Smart Assistant LMSA: Lenovo's Motorola Smart Assistant (PC) For Lenovo and Motorola Devices Only Rescue and Smart Assistant (LMSA) is an official tool installs on PC. Can help to manage smart device (include all Lenovo android phone...
forum.xda-developers.com
If you want to root a Moto device you need to unlock the bootloader.
[Guide]Un/locking Motorola Bootloader
UnLocking and ReLocking Motorola Bootloader https://motorola-global-portal.custhelp.com/app/standalone/bootloader/unlock-your-device-a Moto Bootloader Unlocking site Re-Locking see Post #4 More about bootloader UnLocking Post #2 Can my...
forum.xda-developers.com
Unlocking the bootloader will wipe the device (factory reset)
sd_shadow said:
If you have a windows machine LMSA is the easiest way to get the firmware,
and it's really the best way to flash the firmware if the bootloader is locked.
Rescue and Smart Assistant (LMSA)(Motorola/Lenovo Only)
Rescue and Smart Assistant LMSA: Lenovo's Motorola Smart Assistant (PC) For Lenovo and Motorola Devices Only Rescue and Smart Assistant (LMSA) is an official tool installs on PC. Can help to manage smart device (include all Lenovo android phone...
forum.xda-developers.com
If you want to root a Moto device you need to unlock the bootloader.
[Guide]Un/locking Motorola Bootloader
UnLocking and ReLocking Motorola Bootloader https://motorola-global-portal.custhelp.com/app/standalone/bootloader/unlock-your-device-a Moto Bootloader Unlocking site Re-Locking see Post #4 More about bootloader UnLocking Post #2 Can my...
forum.xda-developers.com
Unlocking the bootloader will wipe the device (factory reset)
Click to expand...
Click to collapse
Thank you the replys. And suggestions. Will Instill be able to recover the deleted data and messages if it is factory restore?
Songbird47 said:
Thank you the replys. And suggestions. Will Instill be able to recover the deleted data and messages if it is factory restore?
Click to expand...
Click to collapse
It's a TracFone variant,you won't be able to do bootloader unlock. No ifs ands or buts. You need a boost,sprint,TMobile,or Metro variant for that. Or factory unlocked
timjames474 said:
It's a TracFone variant,you won't be able to do bootloader unlock. No ifs ands or buts. You need a boost,sprint,TMobile,or Metro variant for that. Or factory unlocked
Click to expand...
Click to collapse
Yeah apparently so, I have hit a brick wall.at every turn. So heres the real question and sole reason behind all the months of trying. Do you know if anyway I could possibly restore deleted text on this device and other data?
Songbird47 said:
Yeah apparently so, I have hit a brick wall.at every turn. So heres the real question and sole reason behind all the months of trying. Do you know if anyway I could possibly restore deleted text on this device and other data?
Click to expand...
Click to collapse
No, the data is encrypted, even if you unlocked the bootloader, you couldn't restore any deleted data.
Unlocking deletes the encryption key need to use the data.
sd_shadow said:
No, the data is encrypted, even if you unlocked the bootloader, you couldn't restore any deleted data.
Unlocking deletes the encryption key need to use the data.
Click to expand...
Click to collapse
Ok so is there anyway you can think of to create a physical image of the data to the use forensica to decifer? Or could I acquire it from a system dump?
Songbird47 said:
Yeah apparently so, I have hit a brick wall.at every turn. So heres the real question and sole reason behind all the months of trying. Do you know if anyway I could possibly restore deleted text on this device and other data?
Click to expand...
Click to collapse
Dump the emmc chip. And use Recuva to find deleted encrypted files. Unfortunately you need to wait until quantum computing is easy to decrypt it.
[google translator] i have a motorola e7 (xt2095-1) . and when I tried to flash a boot.img with root it got stuck in an infinite loop with the error (red state) . I'm very sad that i can not solve someone could help me
Songbird47 said:
I have a Moto E XT25052 Tracfone. After months of research, I have been unable to find any answers on how to root this phone or how to acquire a physical image. Apparently, everything I am trying to do requires an unlocked bootloader. I even tried to pay to have it rooted only to be told its unrootable. Im actually trying to restore deleted text and data. Have tried purchasing many restoration programs that didnt work. And now am studying mobile forensics. I even purchased a Cellebrite Touch only to find out it doesn't support the Moto E and if it did ..bootloader stills needs to be unlocked to acquire physical image. Any help that will actually work would be greatly appreciated. I have exhausted myself looking for the answers. Thought its time to seek help.
Click to expand...
Click to collapse
Try using a newer version of cellebrite UFED, probably a cracked version. You'll need to wait till quantum computers are available to decrypt it.
I have just rooted an old note 10+ 5g with Magisk to recover some old lost photos.
Problem I have is although successfully rooted now, any recovery app I use is not finding a single file.
Anybody have an idea what to do?
Karl Brunton said:
I have just rooted an old note 10+ 5g with Magisk to recover some old lost photos.
Problem I have is although successfully rooted now, any recovery app I use is not finding a single file.
Anybody have an idea what to do?
Click to expand...
Click to collapse
Was the bootloader locked before you did this? Unlocking the bootloader wipes data.
V0latyle said:
Was the bootloader locked before you did this? Unlocking the bootloader wipes data.
Click to expand...
Click to collapse
Yes it was locked and I know it wipes data but thought I might be able to recover data
Karl Brunton said:
Yes it was locked and I know it wipes data but thought I might be able to recover data
Click to expand...
Click to collapse
Nope, sorry. As you know, unlocking the bootloader wipes data, and the only thing that -might- be able to recover your files would be forensic data recovery.
Good luck.
I have my old note 9 that I want to do the same thing with. If bootloader needs unlocking how can I get around this so that I can get root but without losing data? Not done rooting for a long long time and this whole bootloader lock seems to be a right pain
I found out the hard way on a 6T a few years back...you can't. Unlocking the bootloader wipes data. Only way around it is back and restore.