Review: BlackBerry ER application

Submitted by kakroo on Mon, 2010-06-28 20:59.

erThe Software

Blackberry ER an application by PocketMac was primarily designed to locate a stolen BlackBerry handset. The application is designed to send a text message to the registered phone number in case the SIM is changed. It goes a step further by including the GPS location in the text.

The owner may use this information and with the help of local authorities, recover his stolen Blackberry.

The Test

1) Installed the ER application via link provided.

2) Setup the software password, registered another mobile number to send alert in case the SIM is changed.

3) Removed the “registered” SIM from the device to check for the security features of the software.

4) Inserted five different SIM cards (Vodafone UK, Vodafone IN, Nomi Mobile, Lyca Mobile, TalkTalk), the phone was working OK. (Test was done in worst possible condition i.e. with NONE of the SIM having credit/internet access.)

5) Using the “Unregistered” SIM cards I was able to easily DELETE the ER application and reboot the phone without any issues.

6) Even after inserting my “Registered” SIM card I was unable to check for such a mis-use/deletion of the application.


Conclusion & Recommendations:


1) The application failed to detect the deletion by an unregistered SIM which was quite surprising. Even after deletion it provided no information to the registered SIM owner about such a misuse even if the owner re-uses the device by inserting his registered SIM card.

2) The application is not fail-safe and can be easily tricked by a determined person. It can be seen that if one uses a SIM card with no credit/net access, he/she can easily use the phone before flashing the entire device to remove any chances of detection at all.

3) Running the application without being visible would be a great add-on. An average user can easily check the applications folder and see which applications are installed on the device. Even if the application does send the location in a text message, it is a possibility that the thief would find out about ER and dump the Blackberry somewhere else.

4) A notification to the Owner after a device is misused using any SIM card in any condition would be great feature. It would be a nice feature to include a log of all the SIM changes that have taken place in the device and their IMSI numbers. It might be useful in case someone tries to use the device for a moment of time the user is away.

 

Recent comments