Revisiting the "full stealth" mobile spy from Retina-X
I’ve gotten a few emails regarding my previous post, “Full Stealth” just isn’t what it used to be!, asking for a more depth on the subject. I’ve covered just about everything I found in the first posting - but I did go back and re-read the documentation provided on the web site. Looks sort of like a boo-boo on the architecture of the product.
- After the installation completes, power down the phone. Then, power the phone back up and bring up the Dialer. Enter the digits *12345# and then press the SEND button. The login screen should then appear. Enter your username/password EXACTLY as you did when you created it. Then click LOGIN.
Wait, what?! I guess we’re really going to rely on the fact notion that this application is very secure and stealthy. Sure hope someone whose being spied on doesn’t have root and just snag the username and password. That could be embarrassing, spying on someone only to have them turn the tables on you since they now have your credentials. It honestly can’t be that hard to implement a unique identifier for these phones to send that would link them to this account, could it? Oh well, just another reason to not purchase this product :)
For anyone who is rooted and might be worried about this application, you can go ahead and add the following line to your hosts file to block their server.
On a side note - keep an eye out for spyAware - it should be on the Android Market soon, a nifty little proof of concept tool I’ll be using to show how to detect/prevent abuse of your phone.