Skip to main content
  1. Home
  2. Mobile
  3. News

OnePlus responds to privacy fears after hacker mode found on its phones

Andy Boxall
By

OnePlus 5 soft gold
Andy Boxall/Digital Trends
A special app has been discovered installed on OnePlus smartphones that, in the hands of a skilled hacker, could allow unauthorized access to the entire device. The app, which is produced by Qualcomm, is known as EngineerMode, and is designed to assist with tests, fault finding, and other prerelease checks while the phone is at the factory. With some code and a password, however, hackers could treat EngineerMode as a “backdoor,” to your phone, making it a serious security problem.

The app was discovered on OnePlus phones by a mobile security researcher on Twitter, who goes by the pseudonym Elliot Alderson (also the name of the main character in USA Network’s hacker series Mr. Robot). With the assistance of researchers at NowSecure, Alderson cracked the password to EngineerMode, demonstrating its weaknesses and the relative ease anyone familiar with the app, and Android’s workings, could gain root access to a OnePlus phone.

Recommended Videos

EngineerMode has been found on the OnePlus 3, OnePlus 3T, and OnePlus 5 phones. Since the app became widely known, threads have appeared about it on OnePlus’s community forums. Some owners with firewalls installed on their phones report EngineerMode requesting access to the network multiple times per day. Most question why a tool primarily made for prerelease testing is still present on the device after it’s sold.

Related

OnePlus responds to fears

It’s not just OnePlus owners that may have phones with EngineerMode installed, as the Qualcomm tool is likely used by many manufacturers, and has already been found on smartphones produced by Xiaomi and Asus, according to Alderson’s Twitter feed. However, should you be concerned? Does EngineerMode pose a serious security risk?

OnePlus has responded to the situation in a post on its community forums. A member of the OxygenOS — the name given to OnePlus’s version of Android — team wrote:

“Yesterday, we received a lot of questions regarding an apk found in several devices, including our own, named EngineerMode, and we would like to explain what it is. EngineerMode is a diagnostic tool mainly used for factory production line functionality testing and after sales support.

“We’ve seen several statements by community developers that are worried because this apk grants root privileges. While, it can enable adb root which provides privileges for adb commands, it will not let 3rd-party apps access full root privileges. Additionally, adb root is only accessible if USB debugging, which is off by default, is turned on, and any sort of root access would still require physical access to your device.

While we don’t see this as a major security issue, we understand that users may still have concerns and therefore we will remove the adb root function from EngineerMode in an upcoming OTA.”

It’s not the first time OnePlus has needed to respond to security concerns. In October a data collection program was discovered on OnePlus devices, which the company claimed was used for diagnostic and customer service needs, but owners were automatically enrolled into the program. Changes were made to OxygenOS so owners could opt-out of the data program during setup.

OnePlus is currently preparing to launch the OnePlus 5T, an updated version of its current OnePlus 5, which launched earlier this year.

Editors' Recommendations

Topics
Andy Boxall
Andy Boxall
Senior Mobile Writer
Andy is a Senior Writer at Digital Trends, where he concentrates on mobile technology, a subject he has written about for…
For a $1,700 folding phone, the OnePlus Open has one big flaw
OnePlus Open in Emerald Dusk showing camera bump.

OnePlus has been doing a lot of cool stuff lately. Thee company released its first tablet, the OnePlus Pad, earlier this year, and it just launched its first folding phone, the OnePlus Open.

Though folding phones continue to be a small niche in the overall smartphone market, they’ve been growing in popularity recently. And there are a few reasons why one would want a foldable: a convenient larger screen when you need it and a small screen when you don’t, easier multitasking, and more.

Read more
This is OnePlus’ next Android tablet — the OnePlus Pad Go
OnePlus Pad Go official imagery.

OnePlus Pad Go OnePlus

OnePlus started its journey making fast phones that didn't cost an outrageous amount of money — a strategy that soon trickled down to earbuds and subsequently made its way to the tablet segment. The OnePlus Pad arrived in April, serving a sleek slate with a high-resolution 144Hz screen and a top-tier chip for a price lower than Apple’s entry-level iPad.

Read more
OnePlus has big news for September 25 — but it’s not a folding phone
OnePlus-11-Marble-Odyssey-Edition display view.

Within a span of two days this week, we got the launch dates of new iPhones and Google’s Pixel 8 series phones. Today, OnePlus also made a major announcement, albeit one that has little to do with hardware — or its highly anticipated foldable phone.

It is still a remarkable one, however. OnePlus will release Android 14-based OxygenOS 14 on September 25. That also means the stable build of Android 14 will arrive for supported Google Pixel phones before that date, and likely for some Samsung phones as well.
OnePlus will finally start public testing of Android 14 in the coming days for the OnePlus 11, the OnePlus 11R, and the OnePlus Nord 3. The company has been refining the latest iteration of OxygenOS for the past few weeks as part of a closed beta program. Soon, OnePlus will kickstart the OxygenOS 14 Open Beta program ahead of the stable release. 
However, OnePlus won’t be the only brand soak-testing Android 14 ahead of its wide release later this year. Google has seeded multiple public beta builds of Android 14 over the past few months for its Pixel phones, and Samsung has also started testing One UI 6 based on Android 14 for a select bunch of high-end Galaxy phones.

Read more