microsoft
Report a problem

Stolen HTC phone with Windows Mobile 6.5 wiped remotely

Chaks   on 23 February 2009 - 10:41 · 43 comments & 16685 views

Advertisement (Why?)
Last week at the Mobile World Congress, many vendors launched their new Windows Phones and one amongst them was HTC which launched two new models - HTC Touch Pro2 and HTC Touch Diamond2. A HTC prototype Windows Phone loaded with Windows Mobile 6.5 was pick-pocketed from an executive's pocket during an evening function at the Mobile World Congress.

The stolen Windows Phone is believed to be either a HTC Touch Pro2 or HTC Touch Diamond2 and was given by Microsoft to Telstra's CEO Sol Trujillo to try and test the new Windows Mobile OS. Sol handed it to an unnamed executive who was then pick-pocketed.

APC Magazine has confirmed from its sources close to Microsoft that the entire operating system and all the user data on the handset were remotely erased from the phone as soon as the theft was reported.

It is not sure whether this theft was aimed at Sol's private data or getting hands on with the new beta version of Windows Mobile 6.5 and the new HTC Windows Phone. However, Windows Mobile users should be happy that a remote cleanup of the OS did save the day (if the pickpocket had not taken any backup in the meantime)

It always becomes necessary to back up our phone data and be prepared for situations like this. Its a good coincidence that Microsoft also released My Phone, a service to sync text messages, photos, video, contacts and more to the Web, at the Mobile World Congress.

Share this Article

  • Technorati
  • Magnolia
  • Stumble upon it
  • Reddit
  • Blink List
  • Delicious
  • Slashdot
  • Furl
  • Facebook
  • Windows Live
  • Google
  • Newsvine
  • Yahoo
  • RawSugar
  • Netvouz

About the Author

Full name: Unknown
User name: Chaks
Contact: via forum PM
Submissions: View All
More: View Bio   New!

Related news

 

Post a comment · Send to friend Comments · There are 43 additional comments
(1 reply) #1 SojIrOu on 23 Feb 2009 - 10:50
wow thats convenient if you lose your phone. my no.1 worry is that all your personal stuff gets leaked on the web but i guess this would stop that from happening.
#1.1 thealexweb on 23 Feb 2009 - 16:11
SojIrOu said,
wow thats convenient if you lose your phone. my no.1 worry is that all your personal stuff gets leaked on the web but i guess this would stop that from happening.


If there's something on your phone that Microsoft doesn't like it might mysteriously have gone missing one day.
#2 Anaron on 23 Feb 2009 - 10:52
The only real, and obvious, way to tell is to wait. If it leaks, then chances are the remote wipe wasn't effective or the thief immediately backed up the OS.
(7 replies) #3 Richard Hammond on 23 Feb 2009 - 11:19
You dont steal a phone like that and not do anything with it, i suspect the first thing they did was rip the Windows Mobile 6.5 rom ready for leaking all over the internet, all it needs is a reflash.
#3.1 +GreenMartian on 23 Feb 2009 - 11:40
I dunno... Most pickpockets wouldn't even know what Windows is. It might be sitting in a pawn shop for all we knew.

Industrial espionage might make a better plot for the theft, but let's not forget that petty theft is MUCH more common than these movie-plot scenarios
#3.2 Richard Hammond on 23 Feb 2009 - 13:02
Yeah but most pickpockets wouldnt be invited to the mobile world congress, whoever stole it knew what it was.
#3.3 y_notm on 23 Feb 2009 - 14:24
nobody said it was stolen at the convention. The guy could have went out to eat and had it pick pocketed there, or on the way, or a million other scenarios. You're really a conspiracy theory buff if you think industrial espionage is the most likely scenario here.
#3.4 +Frazell Thomas on 23 Feb 2009 - 14:41
They wiped it to protect the company information on the device. It probably had HTC or Microsoft internal documents on it. The remote wipe feature in Windows Mobile will erase all user added data and applications, but won't wipe the ROM itself. So the WM 6.5 ROM installed on the stolen phone is still floating around.
#3.5 GreyWolfSC on 23 Feb 2009 - 16:10
@Frazell:

the entire operating system and all the user data on the handset were remotely erased


The ROM went, too.
#3.6 Nexus- on 23 Feb 2009 - 19:31
No the rom was not erased. remote wipe doesnt have that capability. Regardless of what the article says. So that is wrong GreyWolfSC.
#3.7 Kushan on 24 Feb 2009 - 07:44
Nexus - how do you know it wasn't a special "remote wipe" put on the phone in case of this very thing happening?
(2 replies) #4 eangulus on 23 Feb 2009 - 11:38
My guess is that its too late.

A look over on the [< snipped > - CalumJR] firstly show several 6.5 ROMS. Unknown as to them as some was already leaked before the above forementioned theft.

The clincher in my eyes thou is the new TouchFLO software on the new Touch2 phones. It has already been leaked and is currently being ported for the standard Diamonds.

Either it was leaked internally from HTC due to it not being officially out on any phones yet, or it is from the stolen one.

Last edited by CalumJR on 23 Feb 2009 - 11:46
#4.1 eangulus on 23 Feb 2009 - 13:01
Any reason for the censorship?
#4.2 CalumJR on 23 Feb 2009 - 13:11
@eangulus -

Just sending you a private message now. Unfortunately I was too busy to send it earlier.
(5 replies) #5 neoraptor on 23 Feb 2009 - 12:18
"good coincidence that Microsoft also releas..." - this sounds like MS ad.
Also one serious question is why the hell MS has access to the phone remotely?
#5.1 +bob21 on 23 Feb 2009 - 12:23
They don't , Something like MASPware GuardMobile must have already been pre-installed on the device before it was stolen allowing it to be hard reset remotely and relaying the phones location ...

Last edited by bob21 on 23 Feb 2009 - 12:33
#5.2 ]SK[ on 23 Feb 2009 - 12:53
I can wipe all my company iPhones from my Exchange Server. Most (probably all) devices that sync with Exchange can be remotely wiped. There's a reason why Exchange is teh shiznit.
#5.3 mixpix on 23 Feb 2009 - 13:07
Exchange has had this ability for a while now. It's nothing new.
#5.4 Frank on 23 Feb 2009 - 16:43
mixpix said,
Exchange has had this ability for a while now. It's nothing new.

Exchange only wipes the users specific data. It sounds like Microsoft was able to wipe the entire phone, OS and all.
#5.5 n_K on 23 Feb 2009 - 19:44
Kerio had remote wipe first though didn't it?
#6 =NickJ= on 23 Feb 2009 - 12:36
Does no-one else think that this sounds like a massive publicity stunt? Every news site has absolutely lapped it up with (free) front page coverage and it essentially advertises 2 things for microsoft
#7 zer0day on 23 Feb 2009 - 12:39
If this was industrial espionage, it (probably) wouldn't make much difference wiping it, they could probably retrieve the data.
#8 Osiris on 23 Feb 2009 - 13:06
Ah well eitherway, theres plenty of 6.5 roms floating around now and theres roms incorporating the new touchflo which is a vast improvement on the current touchflo3d. And on the otherhand I guess the news showacases some of the more extraordinary WinMo apps, like this one and others which lockdown the phone remotely for situations like this. Although id rip the sim out and shutdown wifi initially if I ever stole a phone...so how effective they actually are :p
#9 superhuman on 23 Feb 2009 - 14:32
Too late the ROM is already floating around on the internet. [< snipped > - CalumJR]

Last edited by CalumJR on 23 Feb 2009 - 15:38
(1 reply) #10 +bob21 on 23 Feb 2009 - 14:39


yeah its even found its way onto the kaiser, Says a lot about the system requirements of 6.5 when a phone from 2007 can run it without resembling vista on a 486
#10.1 BigCheese on 23 Feb 2009 - 17:30
I've got a blue angel which was released in 2004, and its happily running windows mobile 6.5.
(5 replies) #11 +littleneutrino on 23 Feb 2009 - 14:47
what i am pulling from reading this has nothing to do with someone stealing the Phone but rather that Microsoft and the Phone maker have a way to remotely damage/erase/corrupt/tamper with your mobile phone and the information stored within it. .... I do not like that idea... then again Apple has been doing it so sure why not have everyone else join the party.
#11.1 Marshalus on 23 Feb 2009 - 14:55
Remote Wipe is a standard feature of Microsoft Exchange 2007 (it can be done with 2003 but not as easily) -- the people who had access to remote wipe his data would be the IT admins at Telstra not Microsoft. There is no kill switch in Windows Mobile except for the ones Microsoft built for IT admins in this exact situation.

It's actually so easy to do, the user has the ability to do it from their Outlook Web Access control panel.

(that is from MY mailbo



Last edited by Marshalus on 23 Feb 2009 - 15:01
#11.2 +Frazell Thomas on 23 Feb 2009 - 15:02
Exactly Marshalus!

You would have to pair your phone with a remote wipe capable Exchange Server and then you (or your network admin) can initiate the remote wipe.

In Outlook Web Access running on an Exchange 2007 server you can initiate the wipe yourslef or an admin can do it from the management console...

That puts the control in your hands and your company's hands not Microsoft's or anyone elses. A HUGE difference from the stuff Apple was trying as Apple had that power...

Don't want anyone capable of remote whiping your phone? Don't pair it with an Exchange server
#11.3 Marshalus on 23 Feb 2009 - 16:01
True, but it does work with any Exchange ActiveSync device, not just Windows Mobile. I have actually remote wiped my iPhone just to test it, it's going to be really really handy if I ever manage to lose my phone. It's almost instant and it's a full reset of the device, not just e-mail. I even had to go back through the iTunes activation process to get the phone to work again.
#11.4 Marshalus on 23 Feb 2009 - 16:04
That said... Microsoft may have some other type of remote kill if they were able to nuke the OS on testing devices. To my knowledge there is nothing that will fully blow away the OS on the phone.
#11.5 random_n on 25 Feb 2009 - 01:43
One interesting implication of this feature is that using Google Sync with a Windows Mobile phone will grant Google the ability to wipe your phone remotely. I've not yet tried the service, but if they provision any security policies at the first sync, they can do this without any confirmation (otherwise, you'll at least get a wipe/don't wipe prompt).
(3 replies) #12 naap51stang on 23 Feb 2009 - 15:08
The only problem I would have with a remote wipe, would be if your phone carrier thinks it "appropriate" to wipe your phone, if you are .210 seconds late on paying your bill.
If a remote wipe were available, it should be the owner who could do it, NOT the carrier without approval of the wireless phone owner.
#12.1 +Frazell Thomas on 23 Feb 2009 - 15:23
Look at Marshalus and my comments righ above your post... The Carrier has NO way of remote wiping your device. None...
#12.2 Marshalus on 23 Feb 2009 - 16:02
Correct, the kill switch is built into Exchange ActiveSync. Remote Wipe is available on Windows Mobile and iPhone when syncing to Exchange 2007. (And 2003 but not very user friendly.)
#12.3 mosi on 23 Feb 2009 - 16:21
The remote wipe is a function of Exchange, carriers can't do it just because you don't pay the bill. It needs a connection to the exchange server which you control.
I've done it with a phone here. Got a demo phone whcih I synced to our exchange server, phone broke and I couldn;'t turn it back on to wipe it, so I set it to remote wipe next time it connected to our exchange server and it worked a treat.
AFAIK it you can't do the whole OS with it unless MS have their own thing. Mine would only do contacts/calendar/mail etc that is synced with exchange.
(1 reply) #13 Julius Caro on 23 Feb 2009 - 15:49
it was first reported that the phone was stolen, then microsoft (they have all the wm 6.5 phones under 'control' reported they hadn't received reports of any phone missing, now it's back to being stolen again? it's just a phone! i dont care!
#13.1 GreyWolfSC on 23 Feb 2009 - 17:42
That's because it's not your phone. It contained an unreleased proprietary OS and possibly confidential HTC data.
#14 RebelSean on 23 Feb 2009 - 19:43
What's next, remote detonate? :whistle:
#15 Osiris on 23 Feb 2009 - 21:18
People, Microsoft wouldnt waste their time building a program like this when theres about 100 better consumer features which they could update. There are several pieces of software similar to this:

http://www.bak2u.com/phonebakpdaphone.php

Which would achieve what is described here. It is highly likely for a prototype phone or a phone with senstitive data that this software could have easily been loaded on as such a backup method.
(1 reply) #16 Mikee4fun on 23 Feb 2009 - 22:58
The article is fud. If you join the phone to an exchange server and you have the lockdown policy in effect then if the phone is stolen there area couple of options. Option A. The moron who stole it will attempt to guess the unlock code, fail and wipe the device.Option B you can push out a remote wipe in which it will wipe the data by forcing a hard reset. There is no such thing as wiping the OS that is in rom.
#16.1 +TCLN Ryster on 23 Feb 2009 - 23:12
In production phones, no. At least you'd hope note. But as this was likely a prototype of some sort, whos to know what security measures they would take.
#17 +TCLN Ryster on 23 Feb 2009 - 23:11
I sincerely hope that this "remote wipe" function is just some security software they had installed as a security measure because it was a sensitive device with confidential stuff on it, and that they can't just remote wipe my phone (or do god knows what else with it) remotely.

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.

Advertisement (Why?)
News powered by Neowin Management System (Build - 5.0.1387) © 2000 - 2008 Neowin.net