Skip to main content
  1. Home
  2. Mobile

Researchers hack Android phone using some clever software and oddly, a refrigerator

By

FROST NexusResearchers at the Erlangen University in Germany have come up with a system which could render private and even encrypted information stored on your Android smartphone available to hackers, regardless of whether it’s protected by a PIN code or complicated unlock gesture. It’s called a, “Cold boot attack,” and requires some special software, some patience and most importantly, a refrigerator.

The fridge is required to lower the temperature of the target Android phone. Once it has dropped below 10 degrees it’s quickly rebooted using a special technique which stops the phone reaching the unlock screen. With the phone in its fastboot mode, it’s attached using a USB connection to a computer and a new piece of software is flashed onto the phone.

Recommended Videos

This software, named FROST (which stands for Forensic Recovery of Scrambled Telephones), takes advantage of a phenomenon called Remanence, where previously accessed information sits about in the phone’s RAM for a few seconds just after it restarts. The freezing process has the effect of slowing down the data degradation to five or six seconds, which gives FROST enough time to grab the important parts before it’s all lost.

Related

Personal data stored in RAM

So what can it find? Your PIN code for a start, which will provide complete access to the phone, or if that’s not possible the team has discovered lists of contacts, web browsing history and photos inside the RAM. Normally, all this information is wiped after the phone is unlocked, and versions of Android 4.0 Ice Cream Sandwich and later use a clever disk encryption feature which protects against hacks with circumnavigate the lock screen; but neither are effective against FROST.

While any hack can be used for malicious purposes, this is designed to aid law enforcement groups, providing them with a relatively easy way of recovering sensitive data from new smartphones. It’s demonstrated on a Galaxy Nexus, for which an image of FROST is available, although it will in theory work on most other Android phones. That said, Forbes points out certain data is only accessible if the bootloader is unlocked, and very few devices outside the Nexus range are sold this way.

As with any hack which threatens to expose some or all the personal information we store on our smartphones, FROST is a cause for concern. However, a hacker is going to have to be pretty keen to get at your data to use this attack, and turning off your phone more often should mean less information is stored in the RAM to discover. So just chill out.

Editors’ Recommendations

Topics
Andy Boxall
Andy Boxall
Senior Mobile Writer
Andy is a Senior Writer at Digital Trends, where he concentrates on mobile technology, a subject he has written about for…
How to use Android Recovery Mode to fix your phone or tablet
Pixel 3 recovery mode

Here's an unfun scenario: You've got one of the best Android phones or tablets, but things aren't working right. Typical virus scans and other troubleshooting fixes aren't working. It is time to use recovery mode. This mode allows you to reboot your system and get a fresh start without any viruses or other issues that were potentially causing you trouble.

Unfortunately, there's no one standard way to get into Recovery Mode. In other words, Samsung Galaxy phones and HTC phones have different pathways into the modes. Luckily for you, however, we have the most complete guide to entering Recovery Mode and you should be able to figure out how to get in on just about any device using the steps below.

Read more
I used an Android phone with ChatGPT built-in — and I loved it
Infinix Zero 30 5G Android phone in gold color with ChatGPT virtual assistant.

In less than a year, artificial intelligence (AI) has risen to be the most verbalized topic among the internet-frequenting populace. The credit for AI's roaring fame largely goes to ChatGPT -- the famous chatbot with humanoid responses. The same technology is now being brought to Android phones -- not as a third-party app, but as a deeply integrated virtual assistant.

Infinix, previously in the news for its blazing fast-charging tech that charges a phone fully in under eight minutes, is the first phone company to bring ChatGPT to a smartphone as a virtual assistant with the Infinix Zero 30, which was unveiled last week at the Venice Film Festival.

Read more
This cheap Android phone is one of the best I’ve used in 2023
A person holding the Realme 11 Pro+.

Realme is showing the way forward for cheap phones, and although the new Realme 11 Pro+ isn’t perfect, it’s ambitious and interesting in a way low-cost phones very rarely are.

I’ve used the phone for almost a week and can see where its weaknesses lie, but also where Realme is trying new things in order to provide more value and elevate cheap Android phones like this beyond the mundane.
Making it look brilliant

Read more