Published: Tue, November 14, 2017
Hi-Tech | By Ellis Neal

OnePlus has left an app on its devices that could compromise security

OnePlus has left an app on its devices that could compromise security

This is not the first time that OnePlus has been accused of compromising privacy of its users.

Just a month ago, OnePlus was caught collecting personally identifiable data from phone owners through incredibly detailed analytics. This is thanks to a Qualcomm system-side app and OnePlus's decision to leave it in the custody of end users.

OnePlus likely kept Engineer Mode installed on the devices because it assumed it was secure and would remain unnoticed, given that the app is hidden behind a password. The application is present in all OnePlus devices including 3, 3T and 5. It is actually a modified version of a testing application created by Qualcomm. Now, another potential threat has arisen on OnePlus devices as an app on several of the company's phones has been revealed to carry root access. If it's as widespread as it appears to be, there's a good chance you'll see a software update removing EngineerMode. A developer has found an application that can be manipulated into to granting a backdoor root access.

Getting root access to a smartphone allows a hacker to access "superuser" mode, making it extremely easy to inject malware with surveillance capabilities. Having root access essentially means the user has complete control over the device, including privileged control over features that would otherwise be locked up.

The developer, with the help of few cybersecurity experts, was able to discover the password and was able to root a OnePlus device with few commands.

OnePlus has acknowledged the issue, and company founder Carl Pei said it is being investigated. Following the allegations, OnePlus took some steps, and added the new "opt-in" option for the user experience program.

Like this: