The world's most trusted mobile operating system was built by a reclusive Canadian security researcher who was later swatted, forced out, and left watching the co-founder he split from claim credit for something he created alone , and the full story only became public this week because Wired spent months tracking down the people involved.
GrapheneOS runs on Google Pixel hardware, has no Google services, and represents the highest level of mobile security available to civilians. Journalists operating in authoritarian states use it. Privacy advocates recommend it. The ACLU has endorsed it. Its core architecture , compiler hardening, sandboxed app environments, hardened memory allocators ported from OpenBSD , reflects years of original research by a single developer who has spent most of his adult life operating, as Dave Wilson, the project's community manager, puts it, from a kind of wizard tower. That developer is Daniel Micay. Very little about him is publicly knowable. "All I can tell you about Daniel is that he lives in Canada," Wilson told Wired in its April 21 investigation.
The origin of GrapheneOS runs through CopperheadOS, a hardened Android project that Micay began in 2014 as a solo effort incorporating his existing open-source security work. James Donaldson joined as a business partner, and together they incorporated Copperhead Limited in November 2015. The division of labor was clean in theory: Micay built the product, Donaldson pursued commercial opportunities. The split came in 2018, and it was not subtle. According to the GrapheneOS team's published responses to Wired's fact-checker , a 60-plus-page document released on April 20 , Donaldson had been pursuing business deals that Micay believed were linked to organized crime, including a failed approach to Phantom Secure, a company whose founder was later convicted for providing encrypted phones to drug cartels. Donaldson also pushed Micay to hand over the cryptographic signing keys for CopperheadOS , the credentials that authenticate every software update as legitimate , as a precondition for securing a defense contractor deal that would have required builds Micay did not believe the team could realistically support. When Micay refused, Donaldson reportedly threatened to seize his workstations. The legal dispute over who owned CopperheadOS, its keys, and the Bitcoin donations made to support the open-source project has been running through litigation ever since.
Micay walked away, renamed the project GrapheneOS, and announced it in April 2019 as the "true successor" to what CopperheadOS had been intended to be. The rebranded project remained open-source, refused commercial licensing restrictions, and continued accumulating technical improvements at a pace that outpaced anything Copperhead Limited subsequently produced. The irony is that GrapheneOS, the project Donaldson has no claim to, became the one that the privacy community cares about. CopperheadOS still exists in name. Functionally, it is a footnote.
The Human Cost
What the Wired piece adds to the public record is the personal dimension. In April 2023, Micay was swatted , armed police were sent to his home after an anonymous false report. It happened again. He stepped down as lead developer of GrapheneOS in June 2023, citing the sustained harassment. Another long-term contributor took over development. The project has continued releasing updates and expanding its security features, but Micay's presence in the public discourse around the project he created has been deliberately minimal. The harassment is part of why: the GrapheneOS forums document multiple coordinated attacks on Micay's reputation across years, and the team's response to Wired's fact-checker reads less like a corporate PR document and more like an exhaustive attempt to correct a record that has been systematically distorted.
The GrapheneOS team pushed back hard on the Wired article itself, arguing that the piece relied too heavily on Donaldson's framing and failed to adequately represent the documented history of his conduct. That tension , between Wired's longform narrative and the project's own exhaustive internal account , is itself part of the story. A privacy tool built by someone who values anonymity above almost everything is now the subject of a major mainstream media investigation. Micay agreed to participate through a fact-check process but retained control over how he was represented. Whether the final article reflects the full picture depends entirely on which version of events you find more credible.
What the GrapheneOS Story Reveals About Open-Source Governance
The deeper business lesson embedded in this story is one the tech industry has encountered many times and never quite solved: open-source projects built on the technical vision of a single founder are structurally vulnerable when commercial partners are introduced. The value in CopperheadOS was Micay's research. The signing keys were the mechanism through which that value could be controlled, transferred, or withheld. Donaldson understood this and pushed for access to them. Micay understood it too, which is why he refused. The fight over cryptographic keys was not a technical dispute. It was a control dispute wearing a technical mask , the kind that ends partnerships, triggers litigation, and occasionally results in one person getting swatted in their own home while the other gives interviews to major publications claiming co-authorship of a legacy.
GrapheneOS, meanwhile, keeps shipping updates. As of 2026, it remains the most security-hardened Android distribution available, and its community continues to grow among users who have decided that the default assumptions baked into consumer mobile operating systems are not assumptions they want to accept. The project outlasted the partnership that nearly killed it, and the person most responsible for that is currently living somewhere in Canada, declining most interviews, and apparently not particularly interested in credit.
Also read: GPT-5.5 topped a Minecraft building benchmark and the spatial reasoning implications go far beyond gaming • Xiaomi's MiMo V2.5 Pro matches the best open-weights models in the world and costs half as much to run • Sam Altman says he is deeply sorry OpenAI did not flag Tumbler Ridge shooter to police