We cannot stress enough that the security set on these devices and applications will often alert the user of someone or something touching their data or their device. Use caution when conducting covert missions, as you don’t want to blow your cover by something so simple as an email alerting the user that their Gmail account was accessed. This message shown here was sent after I logged into my test phone using Elcomsoft. When cloud data was extracted using Oxygen with the user’s phone number, an SMS was sent for every application being extracted. Additionally, the user will most likely be logged out of that application and will have to re-authenticate.