-
@ Final
2025-06-07 13:50:19
Forensics company marketing is deliberately vague, sometimes with a sprinkle of hyperbole. A long time ago, GrayKey published a release log indicating official "support" for GrapheneOS, despite it actually only being possible if the user's password was already known. Other forensics firms mentioned this already.
Would an extraction support for a Trezor / Ledger that has the device's PIN known be any special too?
Both Cellebrite and MSAB have been honest about their shortcomings, although the former did not do so publicly. This leads to bad actors using FUD attacking the project by individuals who don't understand how forensic companies work or who they are advertising to with this material. They also certainly would not have the same type of resistance (if any) to these organisations or their exploits as we do.