BQ AQUARIS X - Fake user accounts?
I am currently looking at my 3rd BQ AQUARIS X handset, and I find that all three have exactly the same features … e.g. All look completely fresh, all do not allow access to enable developer mode, all have limited number of settings menu items. SOMETHING STINKS!
I have heard of (but not yet experienced) a fake partition which exists when an android device is either incorrectly started or an incorrect PIN/passcode is used (or there is a 2nd PIN in existence which triggers the fake account).
Is there anyone who can shed some light on this for me please? I need to be sure I am not looking at a fake user account on the devices.
If my analysis of the situation is correct … how do I get the device back to the original PIN entry screen, as right now it starts to an unprotected swipe unlock.
I have actually been looking into this device over the last couple of weeks and it seems the device is running some sort of dual-boot system, starting the device normally takes you into a partition that does not allow USB debugging or anything really do be done on the device. You can't see the IMEI, you can't turn on WiFi or Bluetooth, nothing!
However, booting the device while holding volume down seems to take you to a password screen which I am guessing will take you into the "real" operating system after entering the correct password, unfortunately the password is unknown for the device that I have. I've investigated a few other bq Aquaris devices but none of the others seem to have had this dual-boot system.
Thanks, I will have a look into that. Though I think you're right about the dual boot thing … trouble is that a forensic environment doesn't really allow much room for experimentation on live exhibits, so if there any more experiences out there, then I would love to hear them.
These are running the encrochat OS in the secure partition. If you speak to NTAC they might have some capabilities.
Ah, that makes some sense too … thanks for that good info.
I also now have an Aquaris X with EncroChat related to a pretty serious offence.
I'm still researching and trying to get my agency to buy me a test device but has anyone had any success with this device? I see that the X5 could be compromised but I haven't found anything on the X yet?
i've got some Aquaris X with encrochat OS. Now ufed can do physical via bootloader but these phone have locked EDL mode, i'm looking for a testpoint on the pcb. Any hint?
has anyone had any luck with running them on forensic machines ? we have just gotten one and doesnt want to connect to UFED PC