Android Phone Remote Control (Hackers Can Easily Hack Your Phone) - How Your Phone Can Be Hacked Remotely

Android Phone Remote Control (Hackers Can Easily Hack Your Phone) - How Your Phone Can Be Hacked Remotely

If you install software or I use a special cable, an OMG cable, to get that phone to download and install software. I can remotely control the phone, I can read your SMS's, I can send SMS's from the phone to another phone, which I'll demonstrate.

I want to make it clear that this Article is only for Educational Purpose.

I'm going to show you in this Article how a cable that looks like a standard USB cable or an iPhone cable can be a malicious cable and not what it looks like.

Even though these Two Cables may look the same, one of them is an OMG Cable that allows me to send keystrokes to a phone. It acts like a normal cable but has a lot of power.

Here I've got a Samsung S22. I'm running software in the cloud and notice what I can do. So what I'll do here is use the command send SMS and let's call this fake SMS and press enter. I'll go to messages and as you can see there, fake SMS was received by this phone.

Let's try it again. This is a test SMS from Android. Press enter. It's sending a message to this phone. I'm remotely controlling this phone which is then sending a message via SMS to my iPhone because I've been able to install malicious software on the Android device.

Let's hope they lock Android down a lot more so that this type of thing is not possible.

HACKERS CAN HACK YOUR PHONE

Please note in this example, it's showing up as main activity on the phone. If I go to settings on the phone, you can see that the version being used here is Android 12.

I can read SMS's remotely. So if I use the command dump SMS, those messages are saved to this file on the server. And I could use the command cat and I can read those SMS messages.

I sent an SMS saying extremely important message. Do not share with anyone. Very confidential message. Do not show anyone. Here is a one-time password from three, which is the cell phone provider in this example.

As you can see, messages were received by this phone. I could send a message back saying, hello from iPhone.

So send those messages back to the phone. You can see here, hello from iPhone. On my server once again, I could dump those SMS's. I'll read that file on the server, cat, control V.

Here are the messages, hello from iPhone. This is a test SMS from Android. Fake SMS. Let's call the phone. I'll kill the call. Let's dump the call log. What I'm going to do here is use the command dump call log. Here's the file that's created and I'll cat that information. And you can see this call was missed by the phone.

You could use a phishing website. But they have to agree to install software that hasn't been verified. So you've got to really do some social engineering to get to the user to install the software. What we're going to do in this demonstration is use an OMG cable. If you haven't seen these before, these are made by Hack5. Well, MG is actually the creator, but he sells these cables with Hack5. This is a standard lightning cable, but here is a OMG cable. So you probably can't see the difference between those Two Cables. One is an OMG Cable, one is a Standard Cable.

Very difficult to see the difference. They act like normal cables, but have an AP inside them that you can connect to using Wi-Fi.