Group / Session / Doc Manipulation

Which trials exist, and which trials become “the story”? Attack the post-event record:

• Selection:

  • run it on many people; only the lucky streaks get retold / publicized (your “obvious one”, eg. Derren Brown)

  • choose witnesses who are pliable, distracted, intoxicated, impressed, or numerate-but-not-auditing

• Stopping rules:

  • stop when ahead; stop at a local maximum; declare victory and end the demo (publication bias)

  • restart the narrative (“that was calibration”) without restarting the app

• Selective quoting / citation laundering: record only the best segment; quote only the best number

• Video/screenshot manipulation: splice runs; cut away from failures; edit overlays

• Retelling laundering: “12 or 14” becomes “14” via selective quoting / citation laundering; eg. compress the denominator (“14 in a row”) while omitting the prelude

  (Telephone game/‘leprechauns’ and selective quotation of ranges or rounding can inflate performance; you say “he got maybe 12 or 14 right”, which gets summarized into “he got 14 right”, which is rounded into “he got 15 right”, and misremembered into “he got 20 right”.)

App Integrity / Supply-Chain Tampering

The app is secretly the magician’s prop, via a supply chain attack.

Backdooring such an app is probably cheap and easy.

Zener cards guessing or square-guessing apps are presumably highly unprofitable, in part due to their triviality. Therefore one could create and market such an app for a small budget, perhaps thousands of dollars (less than many stage magic tricks cost to purchase, never mind create); this app could have arbitrary backdoors.

And it would be difficult to audit the app or its creators, as they could be shell companies, pseudonymous, shadow partners, could have purchased it from the original developer, or have backdoored any of the software libraries the app depends on (especially JavaScript Node libraries or advertising SDKs). Alternately, if it’s too hard to compete with pre-existing apps, one could try to engage in ‘typosquatting’—create many confusingly named apps and hope that one gets installed.

It is unlikely that anyone will try serious reverse-engineering, and the app could well be set to only allow backdoor behavior under narrow conditions like specific times and places (similar to advanced persistent threat hacking tactics or some criminal lottery backdoors).

Given that:

• Backdoored target generation:

  • deterministic “random” sequence (eg. day-keyed), memorized or computed by the magician

  • per-device / per-session keying (harder for outsiders to notice; same basic idea)

• Backdoored forcing: “force mode”, the right square is selected after the tap, with high probability

• Backdoored leakage:

  • deliberate visual/audio/haptic cues encoding the answer (tint, micro-clicks, vibration patterns…)

  • “special glasses” decoding (polarization, infrared contact lenses, spectral filtering, etc.)

• Backdoored control channel: covert gestures that toggle rigging (shake/hold patterns, tap rhythm, “practice” code-sequence, like in Las Vegas slot machines)

• Backdoored demo/test mode: hidden mode switch reachable quickly (not “install/jailbreak”; just “feature flag for cheating”)

Bugdoors

The app is “clean” but incompetent, especially in the all-important source of randomness:

• Weak PRNG / weak random seeds:

  • RNGs have many common failure modes: use of public randomness like blockchain hashes or time-based-seeding (easily guessed since relatively few possible candidates), low entropy, state reuse, predictable initialization¹

  • naive modulo mapping biasing some squares (rand()%N failure)

• “fairness” heuristics that create structure: PRNG that is fine for games but learnable/predictable by adversaries given enough output:

  • no repeats, anti-streak logic, shuffle-bags (“sampling without replacement” in disguise, cf. unsorting)

    This is the game-dev version of “Gambler’s Verity”: dependence masquerading as randomness—well-intentioned but deceptively random and exploitable.

  • outcome smoothing (“balance the squares so it feels fair”)

• Practice rounds as inference: early rounds are used to estimate bias/state/heuristic rules; once above-chance prediction is available, then the “real test” begins (“warming up” becomes data collection)

Input / GUI Semantics Exploits

One “guess” secretly becomes many guesses:

• Hitbox edge cases (literally):

  • touch regions overlap; borders mis-bucket; corners have rounding bugs

  • a fingertip can straddle multiple cells; app records “touched” ambiguously.

    On a 4×4 grid, straddling two cells would double your chance 6.25% → 12.5%; straddling 4 (corner intersection) quadruples it to 25%.

• Multi-touch & gesture races:

  • two-finger contact counts as two taps

  • tap+micro-drag registers multiple entered cells

  • tap-down vs tap-up finalization lets you slide the commitment point

• Naive scoring predicates: “correct square was touched at any time during this gesture” rather than “the chosen square equals the correct square”; works fine for users using the app normally, who will never notice the slight excess of “hits” they accidentally trigger, but highly exploitable

• Hard-to-audit interaction timing: rapid tapping exploits animation states where UI feedback lags internal logging

• Miscellaneous bugs: software is hard. Everything that can go wrong will go wrong for someone somewhere. Any zero-day bug could be unpredictably leveraged into a hack, and it is difficult to taxonomize them all beforehand.

Side-Channel Leakage

The answer is visible, but only if you know where to look in side-channels:

• Visual micro-signals:

  • slight tint differences; subpixel artifacts; anti-aliasing differences (eg. browser link rendering allowing a pixel stealing attack)

  • per-cell animation timing differences (one square highlights 10–20ms earlier)

• Audio / haptic micro-signals: tiny differences in click sound, system haptic envelope, or latency

• Performance/timing side-channels (“chick-sexing” or roulette wheel predicting style):

  • different answers traverse different render paths; trained perception beats naïve perception

  • accomplice upgrades this into instrumentation (high-speed camera + classifier famously could beat roulette wheels, see also high-speed robotics, Eulerian video magnification, reflections, etc.), then signals live

• Network metadata leakage: the app phones home; even if encrypted, answer-dependent sizes/timings can leak (traffic analysis / fingerprinting, eg. due to compression leaking secrets), which can be analyzed by a personal device or confederate (see next item)

Confederates / Collusion

Turn a solo trick into a distributed system:

• Parallel session + synchronization: accomplice runs the same RNG/seed and signals the correct square

• Man-in-the-middle of remote randomness: app fetches “random” from a service; accomplice intercepts/rewrites

• Optical assist: accomplice records the screen at distance and extracts cues too subtle to be perceived by any human

• Social assist: accomplice reinforces counts (“that’s 14 right, wow!”), provides social proof, steers memory (cf. Asch conformity experiments)

Confederates can communicate with the magician in too many ways to bother trying to enumerate (eg. idle chitchat could be a prearranged steganographic code, common among mentalists or performers like Penn & Teller, or one could use hand position, body orientation; auditory: cough patterns, speech cadence; haptic: shared-surface vibration, Bluetooth device; temporal: pause length as a code…)

System Substitution/Impersonation

It is not a live honest run:

• Playback masquerading as play: during an attentional gap, open a prerecorded video URL and pantomime taps in sync; close it before handing back.²

• App swap: you cannot ‘install’ a smartphone app easily while being watched; but you could potentially open up a web page which is a single-page app clone.³

• Phone swap: sleight-of-hand swap to a prepared phone with identical form factor/case (possibly delayed); pickpocket technique can be unbelievably good, and people don’t notice people or clipboard swaps. (See the previous Houdini anecdote, who swapped balls and papers.)

• Hardware overlay / fake screen: a phone case overlay shows a fake “screen”; any obtrusive parts or revealing seams are carefully hidden by their hands.

• Demo/test mode while you blink: opportunistic mode switch during a distraction moment (distractions here could include elaborate rituals of focusing, chanting, staring in the distance, sudden hand or head gestures etc. or be a confederate “passing by”)

Rule and Semantic Manipulation

Move the goalposts, then declare you hit them:

• Warm-up framing: failures are “calibration”; successes are “the test”

• Partial credit: “one square off but my finger slipped”, “I meant that corner region”

• Martingale cold-reading: after misses, escalate confidence until an inevitable streak occurs; the final win is remembered more than the intermediate losses (peak-end rule)

• Sheep/goat + Ψ-missing: claim skepticism suppresses hits

• Heads I win, tails skeptics lose: count below-chance runs as “psi” too, doubling the “unusualness” budget

• Redefine patterns: The magician simultaneously monitors several possible “impressive” patterns: ‘longest run of consecutive hits’, ‘overall hit rate’, ‘hits on corner cells’, ‘alternating-color patterns’, “I got the hard ones.” etc.

  Whichever one happened to be unusual by chance gets emphasized. This is the multiple comparisons problem applied to performance and it’s distinct from optional stopping or partial credit—it’s about which metric to report, not when to stop or how to score

Witness / Judge Deception

Attack the audit trail inside the observer; is what you saw what you remember?

• Working-memory overload: speed + patter prevents reliable tallying; people forget what they thought before

• Change blindness: bury misses in attention shifts; glide past the moment you’d verify

• Count drift: “was it 13 or 14?” becomes plastic within minutes, especially with confederates

• Conformity pressure: crowd reaction substitutes for verification (Asch dynamics as a scoring mechanism)