FBI used new, specially tool designed by Israel’s Cellebrite to hack into Trump shooter's phone

The FBI recently gained access to unreleased technology to unlock the phone of Thomas Matthew Crooks, identified as the shooter of former President Donald Trump. The incident occurred at a rally in Bethel Park, Pennsylvania, where Trump sustained an injured ear and a spectator was killed.

On Sunday morning, the FBI encountered difficulties accessing Crooks’ phone. However, just a day later, the FBI announced that they were able to “get inside” Crooks’ smartphone, which turned out to be a Samsung device. This led to speculation that the FBI enlisted the help of Grayshift’s GrayKey, or Cellebrite UFED.

Bloomberg has confirmed in a report that the FBI sought help from Cellebrite, an Israeli digital intelligence company which provides technology to various US federal agencies.

Sources familiar with the investigation, who requested anonymity, told Bloomberg that the FBI needed data from the phone to understand Crooks’ motives for the shooting.

Although the local FBI bureau in Pittsburgh had a license for Cellebrite software, it was ineffective on Crooks’ newer Samsung device running Android. Consequently, the FBI reached out to Cellebrite’s federal team, which collaborates with law enforcement and government agencies.

Within hours, Cellebrite provided the FBI with additional technical support and new, still-developing software from its headquarters in Quantico, Virginia. This enabled the FBI to unlock the phone in 40 minutes.

This timeline contrasts with the variable durations — ranging from seconds to years — it can typically take to unlock a phone, depending on the complexity of the passcode. The specific method used by the FBI remains undisclosed, but Cellebrite’s software can disable a phone’s built-in mechanisms that block repeated passcode attempts while generating millions of potential codes to gain entry.

Cellebrite, listed on the Nasdaq stock market, claims that about 20 per cent of its public sector work involves federal customers. The company reported annual recurring revenue of $89.6 million for the first quarter of 2024 and has worked on over 5 million cases. Cellebrite is aiming to expand its business with US federal customers, as indicated in a recent statement.

However, Cellebrite has faced criticism from privacy advocates who argue that the use of such technology constitutes unethical hacking and has been misused by foreign governments against activists. In response, the company informed federal regulators in 2021 that it had ceased operations in certain regions, including China and Hong Kong, due to human rights concerns. Cellebrite maintains that its software is used exclusively to unlock seized phones in legally sanctioned cases and is never used for surveillance.

This incident highlights the ongoing tension between law enforcement’s need for access to digital evidence and the privacy concerns associated with the use of advanced unlocking technologies.