this post was submitted on 23 Sep 2023
74 points (87.8% liked)

Privacy

31998 readers
546 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

I know it's an odd question, but where I live phones get stolen often. My phone doesn't have the option for an eSim, which is a problem because 90% of the time when a thief steals a phone they take out the SIM card immediately, meaning I wouldn't be able to remotely lock or wipe my phone.

Should I consider glueing the SIM tray shut? Or are there alternative less permanent measures I can take to keep my device secure?

top 50 comments
sorted by: hot top controversial new old
[–] [email protected] 62 points 1 year ago (1 children)

Don’t glue it shut, paint it shut with an acrylic paint or nail polish. Try to stick to the surface with the paint - you could even paint it to cover it/obscure it’s location as well.

This way, if you ever need to remove it you can delicately dab acetone over it to dissolve the acrylic and it will open once again!

[–] [email protected] 11 points 1 year ago

This is amazing! Thank you, I will definitely be painting it closed.

[–] [email protected] 49 points 1 year ago (2 children)

Get a metal case, weld it shut. Connect it to a long chain and a 25kg dumbbell. Guaranteed they won't rob you of your phone.

[–] [email protected] 24 points 1 year ago (1 children)

This is the best tip so far. Thank you so much!

[–] [email protected] 17 points 1 year ago* (last edited 1 year ago) (1 children)
[–] [email protected] 4 points 1 year ago

Ahh imagine carrying on one side for too long, the back pain....

Maybe I could also look into hiring someone to carry the setup for me, that way I can have even more peace of mind knowing I'm protecting my health and my data! /s

load more comments (1 replies)
[–] [email protected] 46 points 1 year ago (1 children)

SIM cards do sometimes malfunction, so if that happens and you glued it in you're kinda screwed.

[–] [email protected] 3 points 1 year ago (1 children)

This is also true, maybe there's another non permanent way of doing this? I only need the SIM card in the device when it's stolen long enough for me to remotely wipe the device

[–] [email protected] 15 points 1 year ago

Well, either you glue it, and if you ever need to switch the SIM, you buy a new phone. Or you buy a new phone with eSIM support now.

I guess the only other option is to have a case that's hard to get off to buy you some time?

[–] [email protected] 27 points 1 year ago (9 children)

There isn't really a point to that. The very first thing thieves do is turn off the phone so you can't track it. They'll then usually format your phone and sell it. Best you can do is set up a secure password and not show any info on the lock screen so they at least wouldn't be able to access your stuff.

[–] [email protected] 3 points 1 year ago

True, but in my country and in my experience the first thing they do is remove the SIM card so that you can't track it, if it's an android which it is in my case.

I've got a secure password and no details on the lock screen but I'd just like to try protect myself even more

load more comments (8 replies)
[–] [email protected] 23 points 1 year ago (3 children)

Depending on how they get stolen, I'd carry a decoy.

[–] [email protected] 6 points 1 year ago

But what about a decoy for the decoy?

[–] [email protected] 6 points 1 year ago (1 children)

Not a bad idea actually. I do have a work phone which I could hand over but if I get frisked they'll find the personal phone anyways

[–] [email protected] 4 points 1 year ago (4 children)

....What awful country is this, that your phone gets stolen?

load more comments (4 replies)
[–] [email protected] 6 points 1 year ago

That actually worked for me once. Handed over my old Nokia brick phone and kept my Motorola flip lol.

[–] [email protected] 10 points 1 year ago

The federal government has had difficulty dealing with modern locked phones. The sim isn't integral to the security of the device, it's just a pointer for the carrier to route calls to. A modern phone with whole system encryption and a strong password is going to be protected against most everyone including nation state actors.

The only real advisory I like to put out with regards to phones is the same as most other devices, don't reuse passwords and for two factor ideally use something other than email or SMS which makes it far more difficult to get the second factor.

The other thing that's kind of a 'best practice' is using a password rather than any kind of biometric. The reason there is last I'd read (in the USA) the current legal guidance is that while authorities can compelle someone to put a finger on a screen or look at the device, they cannot compelle them to open the contents of their mind (forced testimony) due to the 5th amendment protections. Of course that kind of thing is more related to legal situations rather than lost/stolen devices.

[–] [email protected] 9 points 1 year ago* (last edited 1 year ago) (3 children)

I might recommend using something like tape. Extra Strong Clear Tape.

You may also want to invest in a phone case; preferably an opaque and waterproof one that is difficult to remove.

There are apps available on F-Droid like PrivateLock which might help too; this will automate locking your phone if it's snatched from your hands suddenly.

Last thing I can say is to use a short screen timeout and a strong password to unlock the phone.

[–] [email protected] 2 points 1 year ago

you really shouldn't be recommending things that adds attack vectors.

load more comments (2 replies)
[–] [email protected] 8 points 1 year ago (1 children)

Some phones including Samsung are encrypted by default.

Don't keep data on your device you don't need and use the encryption.

[–] [email protected] 7 points 1 year ago (1 children)

that doesn't help with sim removal. sim swaps are stuff are a thing and honestly more of a concern than data exfiltration.

[–] [email protected] 3 points 1 year ago

"meaning I wouldn’t be able to remotely lock or wipe my phone". The original post indicated data was the issue. If they want to get the sim out and wipe it, they will. Need to solve the problem (data loss).

[–] [email protected] 7 points 1 year ago* (last edited 1 year ago) (4 children)

To actually answer your question:
Super glue would be a decent option. You should only need one drop to secure the tray.

If you ever need to open the tray again, wet the area with isopropyl alcohol for a few minutes, and it should pop right open without damage. If you get too much resistance, add more alcohol and wait a little longer.

There is also a 2-part epoxy with similar performance called "Doubkr Bubble" that also dissolves with alcohol, but it's definitely overkill for a SIM tray.

[–] [email protected] 5 points 1 year ago (2 children)

If you can open it, they can open it. There's not much of a point if it's something you can undo.

[–] [email protected] 11 points 1 year ago (1 children)

Same deal as putting a lock on a door. Buys time

[–] [email protected] 5 points 1 year ago (1 children)

Exactly this. I'm looking to buy time not to completely bar access

load more comments (1 replies)
[–] [email protected] 9 points 1 year ago* (last edited 1 year ago)

It at least provides resistance to the immediate removal of the card. I doubt most thieves are running around with readily available solvents. Could provide enough time to remotely lock or wipe as OP said

load more comments (2 replies)
[–] [email protected] 7 points 1 year ago* (last edited 1 year ago) (1 children)

A better option would be to use a good password generally and the built-in lost device functions like Find my iPhone, Google Find my Device or Samsung Find my Mobile.

If you're using Android, and want a separate app that can lock down your device outside of the built-in functionality, among a ton of other features:
I used to use Cerberus years ago for that security before that functionality was really built in. It is a side loaded app that allows remote tracking, lockdown, etc. and functions as a system app. They have a version of the apk that is listed as "System Framework" with a stock Android icon and as well to hide in the app listing. You can have it hide the app and access it via a dialer code as well for added security. When I used it, you could have it take photos to send to your email with location data for incorrect login attempts, send messages to the device to display while lost, etc. www.cerberusapp.com

[–] [email protected] 2 points 1 year ago (1 children)

Still no use if the SIM gets pulled, therefore losing connectivity and rendering any Find My Device app useless. Unless I'm missing something?

load more comments (1 replies)
[–] [email protected] 6 points 1 year ago (2 children)

Hot glue can be undone with heat

load more comments (2 replies)
[–] [email protected] 6 points 1 year ago* (last edited 1 year ago) (2 children)

I mean on average theyll just turn it off and then try to factory reset it later which will remove your data if there isnt an exploit. What i do since I have the same problem, is just not keep any data on my phone the same goes for accounts but I see that might not be for everyone. Assuming your phone is fully updated a long passphrase, think stock android limits to 17 characters, should be enough to keep out the average drug addict. Be mindful of your surroundings, dont fight back unless they try kidnapping you and use lockdown mode or fully restart your device when you go to a shady area. Curious what device do you have?

Edit: what you should be more worried about are the assholes that force you to unlock it and then empty out your bank through the countless digital payment methods. Arming yourself would be the answer for that

load more comments (2 replies)
[–] [email protected] 5 points 1 year ago* (last edited 1 year ago) (3 children)

Have you thought about using a strong unlock method, so they can not gain access to your data in the first place (if all you want to do is wipe it)?

load more comments (3 replies)
[–] [email protected] 3 points 1 year ago (2 children)

If I really had such a concern I'd use a Linux phone, e.g PinePhone or PinePhone Pro, and I would program it so that unless a certain command has been ran, if it boots or stay too long (e.g 1s) without a SIM then it deletes sensitive data.

[–] [email protected] 3 points 1 year ago

Or a rooted android.

load more comments (1 replies)
load more comments
view more: next ›