OnePlus phones sold with root exploit backdoor

Yolanda Curtis
November 14, 2017

Earlier this year BLU was revealed to have some serious security concerns, and even OnePlus has had issues revealed. This is thanks to a Qualcomm system-side app and OnePlus's decision to leave it in the custody of end users.

The application is called "EngineerMode" and was developed by Qualcomm for factory testing.


In this app, the developer has found activity known as "DiagEnabled", if enabled with a specific password, grants the root access. The application is present in all OnePlus devices including 3, 3T and 5. Users have discovered that numerous company's phones from the past few years (including the OnePlus 5) include a Qualcomm testing app, EngineerMode, that lets you get root-level access to the phone without having to unlock its bootloader.

Root implies to the highest degree of access to an Android operating system that is usually deployed to safeguard the privacy of the user.


As the impending launch of the OnePlus 5T nears, the company has once again found itself the subject of controversy. An attacker would likely need physical access to your phone to do any damage, but that still means they could insert trackers or otherwise compromise your phone with very little effort. While the company eventually reversed course on the data collection, another discovery has been made in the software of OnePlus phones. The app gives unprecedented access to a host of security-sensitive features of your phone, with the worst offender being the "all clear" command, which would erase all data on the phone, internal storage and all. But it also serves as a warning to OnePlus to be particularly careful with the software it leaves on its future phones after they roll off the production line.


Other reports by iNewsToday

FOLLOW OUR NEWSPAPER