Skip to main content

Warning: Factory resetting your Android phone may not delete everything

When you factory reset your Android device, you expect all your personal data to be deleted. Unfortunately, security firm Avast Software discovered that doing so doesn’t necessarily delete everything from the device.

Avast turned to eBay to purchase 20 Android smartphones that, according to the previous owners, were factory reset. According to the company, by using commercially-available recovery software, it was able to restore 40,000 pictures, which included pictures of children, women in “various stages of undress,” and male nude selfies. Avast also recovered 1,000 Google searches, 750 emails and text messages, and 250 contact names and email addresses.

Even with all the recovered information, Avast was only able to identify four of the previous 20 owners. Even so, in the wrong hands, personal information can still be used for nefarious purposes.

“Along with their phones, consumers may not realize they are selling their memories and their identities,” said Avast’s Jude McColgan. “Images, emails, and other documents deleted from phones can be exploited for identity theft, blackmail, or even stalking purposes. Selling your used phone is a good way to make a little extra money, but it’s potentially a bad way to protect your privacy.”

According to Avast, to truly delete all your personal data, you must overwrite it, something that Avast’s app, coincidentally, can do. We would take all of this with a grain of salt, since it would be in Avast’s interest to have you use its service. The company also didn’t reveal what specific Android smartphones it purchased, nor did it reveal what software it used to recover the thought-to-be-deleted personal data.

Regardless, it pays to be aware when selling devices.

Editor’s note by Jeffrey Van Camp: This is not a new problem. There have been reports since 2012 about Android devices not completely wiping data. We recommend you use caution when selling or giving away old devices.

Editors' Recommendations

Williams Pelegrin
Former Digital Trends Contributor
Williams is an avid New York Yankees fan, speaks Spanish, resides in Colorado, and has an affinity for Frosted Flakes. Send…
How to use Google’s Gemini AI app on your Android phone
How to use Gemini on your Android.based device.

Google's collaboration AI tool, Bard, has changed its name and is now known as Gemini. The tool is also now available as an app on the Google Play Store, meaning it's easier than ever to chat with Google's AI assistant on your Android phone.

Read more
Google is launching a powerful new AI app for your Android phone
Google Gemini app on Android.

Remember Bard, Google’s answer to ChatGPT? Well, it is now officially called Gemini. Also, all those fancy AI features that previously went by the name Duet AI have been folded under the Gemini branding. In case you haven’t been following up all the AI development flood, the name is derived from the multi-modal large language model of the same name.

To go with the renaming efforts, Google has launched a standalone Gemini app on Android. Moreover, the Gemini experience is also being made available to iPhone users within the Google app on iOS. But wait, there’s more.

Read more
If you have one of these apps on your Android phone, delete it immediately
The app drawer on the Google Pixel 8 Pro.

The NSO Group raised security alarms this week, and once again, it’s the devastatingly powerful Pegasus malware that was deployed in Jordan to spy on journalists and activists. While that’s a high-profile case that entailed Apple filing a lawsuit against NSO Group, there’s a whole world of seemingly innocuous Android apps that are harvesting sensitive data from an average person’s phone.
The security experts at ESET have spotted at least 12 Android apps, most of which are disguised as chat apps, that actually plant a Trojan on the phone and then steal details such as call logs and messages, remotely gain control of the camera, and even extract chat details from end-to-end encrypted platforms such as WhatsApp.
The apps in question are YohooTalk, TikTalk, Privee Talk, MeetMe, Nidus, GlowChat, Let’s Chat, Quick Chat, Rafaqat, Chit Chat, Hello Chat, and Wave Chat. Needless to say, if you have any of these apps installed on your devices, delete them immediately.
Notably, six of these apps were available on the Google Play Store, raising the risk stakes as users flock here, putting their faith in the security protocols put in place by Google. A remote access trojan (RAT) named Vajra Spy is at the center of these app's espionage activities.

A chat app doing serious damage

Read more