OK, sit down, everyone — we don’t want you falling over and hurting yourself when you learn the news that actually yes, your phone has been listening to your conversations all along. Shocking, we know, but that certainly seems to be what an outfit called Cox Media Group (CMG) does with its “Active Listening” software, according to a leaked slide deck that was used to pitch potential investors. The gist is that the software uses a smartphone’s microphone to listen to conversations and pick out keywords that it feeds to its partners, namely Google, Facebook, and Amazon so that they can target you with directed advertisements. Ever have an IRL conversation about something totally random only to start seeing references to that subject pop up where they never did before? We sure have, and while “relationship mining” seemed like a more parsimonious explanation back in 2017, the state of tech makes eavesdropping far more plausible today. Then there’s the whole thing of basically being caught red-handed. The Big Three all huffed and puffed about how they were shocked, SHOCKED to learn that this was going on, with reactions ranging from outright denial of ever partnering with CMG to quietly severing their relationship with the company. So much for years of gaslighting on this.
smartphone117 Articles
The Moondrop MIAD 01: A Smartphone With Balanced Audio Output
Over the past several years we have seen smartphones regrettably lose features which were once standard, such as FM radios, IR blasters, status LEDs, physical buttons, micro SD card slots, and of course headphone jacks. An interesting counterpoint here regarding the latter is the newly released Moondrop MIAD 01 smartphone.
As a relatively well-known manufacturer of audio equipment including in-ear monitors (IEMs), the announcement of a smartphone came out of left field, but the specifications make sense. Of particular interest are the dual audio jacks: one 3.5 mm TRRS and one 4.4 mm balanced TRRS, making it a good match for high-end headphones that support balanced audio.
While the smartphone hardware is your average mid-range selection, featuring a MediaTek Dimensity 7050 SoC — its main selling point are the dual Cirrus Logic MasterHiFi DACs, that power the dual audio jacks. It’s also the reason behind the name: Mobile Internet Audio Device, or MIAD for short.
Given Moondrop’s audio enthusiast market, this tracks. These are people for whom the mere mentioning of ‘Bluetooth Audio’ or ‘USB-C-to-audio jack dongle’ is likely to evoke a less than favorable response.
In terms of software, Moondrop says the phone will offer a “native” Android 13 experience, which hopefully means it will be free from manufacturer-specific changes and bloatware. You’ll need to manually install Google Mobile Services though, as is often the case with Android devices that aren’t from the major players in the industry.
As reported by Android Authority, the MIAD 01 is available via select outlets for $399. Details like software updates remain to be clarified, but this might be the most over the top audio-centric smartphone we have seen so far. It definitely gives Sony’s current range of Android-based Walkmans a run for their money, while even having phone functionality in the package.
Webserver Runs On Android Phone
Android, the popular mobile phone OS, is essentially just Linux with a nice user interface layer covering it all up. In theory, it should be able to do anything a normal computer running Linux could do. And, since most web servers in the world are running Linux, [PelleMannen] figured his Android phone could run a web server just as well as any other Linux machine and built this webpage that’s currently running on a smartphone, with an additional Reddit post for a little more discussion.
The phone uses Termux (which we’ve written about briefly before) to get to a Bash shell on the Android system. Before that happens, though, some setup needs to take place largely involving installing F-Droid through which Termux can be installed. From there the standard SSH and Apache servers can be installed as if the phone were running a normal Linux The rest of the installation involves tricking the phone into thinking it’s a full-fledged computer including a number of considerations to keep the phone from halting execution when the screen locks and other phone-specific issues.
With everything up and running, [PelleMannen] reports that it runs surprisingly well with the small ARM system outputting almost no heat. Since the project page is being hosted on this phone we can’t guarantee that the link above works, though, and it might get a few too many requests to stay online. We wish it were a little easier to get our pocket-sized computers to behave in similar ways to our regular laptops and PCs (even if they don’t have quite the same amount of power) but if you’re dead-set on repurposing an old phone we’ve also seen them used to great effect in place of a Raspberry Pi.
Streaming Deck Removes Need For Dedicated Hardware
Streaming content online has never been more popular than it is now, from YouTube to Twitch there are all kinds of creators around with interesting streams across a wide spectrum of interests. With that gold rush comes plenty of people selling figurative shovels as well, with audio mixing gear, high-quality web cams, and dedicated devices for controlling all of this technology. Often these devices take the form of a tablet-like device, but [Lenochxd] thinks that any tablet ought to be able to perform this task without needing dedicated, often proprietary, hardware.
The solution offered here is called WebDeck, an application written in Flask that turns essentially any device with a broswer into a stream control device. Of course it helps to have a touch screen as well, but an abundance of tablets and smartphones in the world makes this a non-issue. With the software running on the host computer, the streamer can control various aspects of that computer remotely by scanning a QR code which opens a browser window with all of the controls accessible from within. It has support for VLC, OBS Studio, and Spotify as well which covers the bases for plenty of streaming needs.
Currently the host software only runs on Windows, but [Lenochxd] hopes to have MacOS and Linux versions available soon. We’re always in favor of any device that uses existing technology and also avoids proprietary hardware and software. Hopefully that’s a recipe to avoid planned obsolescence and unnecessary production. If you prefer a version with a little bit of tactile feedback, though, we’ve seen other decks which add physical buttons for quick control of the stream.
Your Noisy Fingerprints Vulnerable To New Side-Channel Attack
Here’s a warning we never thought we’d have to give: when you’re in an audio or video call on your phone, avoid the temptation to doomscroll or use an app that requires a lot of swiping. Doing so just might save you from getting your identity stolen through the most improbable vector imaginable — by listening to the sound your fingerprints make on the phone’s screen (PDF).
Now, we love a good side-channel attack as much as anyone, and we’ve covered a lot of them over the years. But things like exfiltrating data by blinking hard drive lights or turning GPUs into radio transmitters always seemed a little far-fetched to be the basis of a field-practical exploit. But PrintListener, as [Man Zhou] et al dub their experimental system, seems much more feasible, even if it requires a ton of complex math and some AI help. At the heart of the attack are the nearly imperceptible sounds caused by friction between a user’s fingerprints and the glass screen on the phone. These sounds are recorded along with whatever else is going on at the time, such as a video conference or an online gaming session. The recordings are preprocessed to remove background noise and subjected to spectral analysis, which is sensitive enough to detect the whorls, loops, and arches of the unsuspecting user’s finger.
Once fingerprint patterns have been extracted, they’re used to synthesize a set of five similar fingerprints using MasterPrint, a generative adversarial network (GAN). MasterPrint can generate fingerprints that can unlock phones all by itself, but seeding the process with patterns from a specific user increases the odds of success. The researchers claim they can defeat Automatic Fingerprint Identification System (AFIS) readers between 9% and 30% of the time using PrintListener — not fabulous performance, but still pretty scary given how new this is.
FairBerry Brings The PKB Back To Your Smartphone
Missing the feel of physical keys on your phone, but not ready to give up your fancy new touchscreen phone? [Dakkaron] has attached a BlackBerry keyboard to a slightly more recent device.
Designed for the FairPhone 4, [Dakkaron]’s hack should be transferable to other smartphones as it connects to the phone over USB without any of that tedious mucking about with Bluetooth. There’s even a handy OpenSCAD-based generator to help you along in the customization process.
[Dakkaron] started with an Arduino Pro Micro-based implementation, but the most recent iteration uses a custom board that can be obtained partially-populated. Unfortunately, the Hirose connector for the keyboard isn’t available off-the-shelf, so you’ll have to solder that yourself if you’re planning to do this mod. Sounds like a perfect opportunity to practice your surface mount soldering skills!
If the Q10 keyboard looks familiar, it’s probably because it’s one of the most popular keyboards for small projects around here. Check out Regrowing a BlackBerry from the Keyboard Out or a LoRa Messenger with one. We’ve even seen them in a conference badge!
Mailblocks Makes Your Phone Work More Like The Post, Kinda?
Phones can be distracting, with notifications popping up all the time to snare our attention and maybe even ruin our lives. [Guy Dupont] wishes to be no slave to the machine, and thus built a solution. Enter Mailblocks.
The concept is simple. It’s a physical mailbox which [Guy] can put his phone in. All notifications on the phone are blocked unless he puts his phone into the box. When the phone is inside and the box is closed, the little red flag goes up, indicating “DOPAMINE” is available, and [Guy] can check his notifications.
To achieve this, [Guy] is running a custom DNS server. It redirects all the lookups for push notifications on Android so they go nowhere. Placing the phone in the mailbox turns the re-directions off, so the phone can contact the usual servers and get its notifications as normal.
It’s a novel way of fighting against the constant attention suck of modern smartphones. Rather than being bombarded by notifications in real time, [Guy] instead has to take a significant intentional physical action to check the notifications. It cuts the willpower required and the interruptions to his work in a fell swoop.
We’ve featured [Guy’s] innovative and outside-the-box projects before, too. His smart pants were an absolute tour de force, I might add.
Continue reading “Mailblocks Makes Your Phone Work More Like The Post, Kinda?”







