Now that the US government is expanding their use of Graphite, I’m curious if GrapheneOS is susceptible to that spyware. Does anyone know the best steps to take to avoid being subject to that level of privacy invasion? I currently use GrapheneOS.
There are discussions on the GrapheneOS forum about Graphite specifically. I haven’t looked much into that particular malware myself, but my general answer to this type of question should apply:
Given that Paragon seems to rely on zero-days and zero-click exploits, I think the best you can do (assuming you NEED to have a phone at all) is going to be using GrapheneOS and doing everything you can to reduce your attack surface/lock down.
i.e.
- Make sure you aren’t giving any apps any permissions they don’t need - ideally, force them to ask every time.
- Disable sensors when not in use.
- Uninstall apps you do not use or can get by without.
- Don’t connect to the internet if you don’t need to.
- Disable features in apps. (for example, disable link previews in Signal)
- Keep data that doesn’t need to be on your phone off your phone. Store it in offline devices/drives (encrypted).
2 Likes