Skip to main content

Trying to hack an Android? Just keep typing random letters

Gigaset Android phones
Andy Boxall/Digital Trends
To the average, untrained, movie-watching layman, the process of hacking into a phone or computer system may just seem like a lot of rapid and random typing, with hopes of accidentally cracking some secret code. Unfortunately, when it comes to the Android Lollipop operating system, that’s actually all it takes to bypass the lockscreen — just keep entering random letters, and eventually, you’ll overload the phone and proudly label yourself a successful cellphone hacker.

“By manipulating a sufficiently large string in the password field when the camera app is active, ” John Gordon of the University of Texas at Austin said, “An attacker is able to destabilize the lockscreen, causing it to crash to the home screen.” Yikes.

Related Videos

This rather alarming vulnerability, recently discovered by researchers at the University of Texas in Austin, is said to affect around 21 percent of phones, but only those running Lollipop, and only those with a text password. Users who employed PINs or pattern locks did not face the same issue (though these sorts of passwords certainly come with issues of their own).

Gordon told Slate that he discovered the vulnerability by complete accident while playing with his phone during a lengthy road trip. “I’m sitting in the passenger seat, bored, with no signal on my phone, so I start poking around and seeing what unexpected behavior I can cause,” he said. “A few idle hours of tapping every conceivable combination of elements on the screen can do wonders for finding bugs.”

Happily, Google has already rolled out a patch for affected devices, including the Nexus 4, 5, 6, 7, 9, and 10. Still, other phone makers will need to distribute the appropriate software to their own devices to ensure a complete fix to the issue.

The problem, while not particularly widespread, certainly seems like a significant cause for concern, as one would hope that today’s phones are sophisticated enough to withstand “attacks” that are little more than a system overload generated by, well, lots of letters. After hacking into the phones, researchers at UT were able to access everything available on them, including data, applications, photos, and more.

Of course, the hackers would need to have physical access to your phone in order to do any damage, and you could avoid the situation altogether by simply implementing a PIN or pattern to protect your phone, but still, this latest revelation doesn’t exactly inspire faith in the software.

That being said, ExtremeTech points out that there really isn’t anything to worry about, and that such vulnerabilities are discovered and subsequently addressed relatively frequently. As Ryan Whitwam writes, “This is how software patches work when handled responsibly — an issue is reported, a patch is issued, and the method is disclosed. There’s nothing unusual about this flaw, and there aren’t millions of phones out there with broken lock screens. Don’t believe the hype.”

Editors' Recommendations

How to tell if your smartphone has been hacked
Kids playing on a smartphone.

Smartphones have profoundly changed the way people live, communicate with each other, and keep themselves entertained. But like everything else, there's a downside. Corrupt people always want what doesn't belong to them, and devise elaborate criminal methods to get what they want and make everyone else miserable. When thieves hack smartphones, they take more than possessions -- they steal information, money, identity, and -- in some cases -- reputation, all of which can destabilize and endanger the target's health and well-being.

Don't bother expending any effort to identify the hacker. While it's possible to find out who broke into your phone, most of these searches wind up failing. That's because most phone hackers operate on the dark web and behind proxy servers. They specialize in covering their tracks. Most cyberattacks and phone hacks are carried out via malware, anyway, so despite how personal it may feel, mostly it's not personal at all.

Read more
How to share your Wi-Fi password from your iPhone to an Android device
Person holding iPhone 11 with a customized home screen layout.

Sharing your home or office network doesn't mean you must hand out the password like a business card. You don't need to text the information, write it down in a folded love note-like manner, or send it in an email. Instead, you just need to generate a QR code to share the information.

This guide shows you how to share your Wi-Fi password from an iPhone to an Android device. Afterward, we reverse course and show you how to share a network password with an iPhone using stock Android 11 and a Samsung phone with Android 10. The methods are extremely simple and are far more secure than dolling out passwords in written and texted forms.
Share your network password from iPhone to Android
Because iOS doesn’t have a built-in QR code generator like Android, you need to install an app like Qrafter or Visual Codes. In this guide, we use the latter app, which requires iOS 11 and newer. It's free to use in this case, but you can unlock the Share & Print Codes feature for $1 and the ability to save scanned codes for another $2.
On the iPhone

Read more
Google just added 6 great features to Android, from security to accessibility
Someone holding a Google Pixel 5. The screen is on and shows the Home Screen with an app folder open.

Google is bringing a range of extra features to Android, and you don't have to wait for Android 12 to get them. The company announced a series of features across the Android system, with six main updates, so there's a little something here for everyone.

The new features are starting to become available now, however, they're coming out as part of separate app updates or Android updates, so you might get some before others.

Read more