Wednesday, August 17, 2022
  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
No Result
View All Result
Home Mobile Apps

Factory Installed Backdoor Discovered On OnePlus Devices

by Farhan
November 15, 2017
341
SHARES
Share on FacebookShare on Twitter

OnePlus is not doing itself any favours with the security community. A developer poking around one of its phones discovered an app designed for factory testing, but could also be reverse engineered to provide root access to the device.

The app in question is clearly labelled EngineerMode, and is meant to allow factory workers to determine if the phone is working before its packaged. On the surface, it runs several diagnostics and automated tests. However, launching the “DiagEnabled” function in the APK also provides full root access; provided one has the password.

ADVERTISEMENT

This password was easily discovered by security company NowSecure, which answered a call for help in cracking the code. It turns out that the information was stored in a SHA256 hash and could be reversed by simply using a Google search.

On its own, this small toolkit could be used by developers to root OnePlus devices without having to unlock the phone. However, it could also be used by cybercriminals and hackers to gain control over the phone. Especially combined with other vulnerabilities.

OnePlus, for its part, has issued a statement clarifying the matter. According to the company, the APK will not allow third party apps to have root access; and that the adb root can only be accessible through USB debugging. Something that is turned off by default. However, the company has said that it will be removing Engineering Mode from existing OnePlus devices with an upcoming OTA update.

[Source: AndroidPolice, NowSecure]

Follow us on Instagram, Facebook, Twitter or Telegram for more updates and breaking news. 

Tags: Backdooroneplus
Back to top
Share136Tweet85SendShare

ADVERTISEMENT

RELATED ARTICLES

Mobile

Oppo, OnePlus Suspend Sales In Germany Over Lawsuit

by John Law
August 11, 2022
oneplus nord n20 se malaysia global
Mobile Phones

OnePlus Quietly Launches Nord N20 SE; May Debut In Malaysia Soon

by Heirul Kamel
August 4, 2022
OnePlus 10T 5G Malaysian Launch
Mobile Phones

OnePlus 10T Coming To Malaysia This September

by Ikmal Rozlan
August 3, 2022
oneplus nord buds ce
Earbuds

OnePlus Officially Unveils Nord Buds CE; Up To 20 Hours Of Battery Life

by Ikmal Rozlan
August 2, 2022
Load More
No Result
View All Result

TRENDING TODAY

  1. 1
    Apps

    WhatsApp Is Giving You Two Whole Days To Delete Messages

  2. 2
    Telco

    Maxis And U Mobile Reportedly The Only Holdouts From DNB 5G Network

  3. 3
    Fintech

    Touch ‘n Go RFID Fuelling Finally Goes Official: Now Available At 88 Shell Stations

  4. 4
    Apps

    Factory Installed Backdoor Discovered On OnePlus Devices

  5. 5
    Mobile Phones

    vivo Y35 Now Available In Malaysia For RM 1,099

Consumer Tech News & Reviews Malaysia

NETWORK

  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks

ABOUT

  • Advertise
  • Careers
  • Privacy Statement
  • Contact Us
  • Editorial Policy
  • Terms & Conditions

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

We use cookies to improve your experience. Learn More.