Skip to main content
  1. Home
  2. Mobile
  3. News

Trying to hack an Android? Just keep typing random letters

Lulu Chang
By

Gigaset Android phones
Andy Boxall/Digital Trends
To the average, untrained, movie-watching layman, the process of hacking into a phone or computer system may just seem like a lot of rapid and random typing, with hopes of accidentally cracking some secret code. Unfortunately, when it comes to the Android Lollipop operating system, that’s actually all it takes to bypass the lockscreen — just keep entering random letters, and eventually, you’ll overload the phone and proudly label yourself a successful cellphone hacker.

“By manipulating a sufficiently large string in the password field when the camera app is active, ” John Gordon of the University of Texas at Austin said, “An attacker is able to destabilize the lockscreen, causing it to crash to the home screen.” Yikes.

Recommended Videos

This rather alarming vulnerability, recently discovered by researchers at the University of Texas in Austin, is said to affect around 21 percent of phones, but only those running Lollipop, and only those with a text password. Users who employed PINs or pattern locks did not face the same issue (though these sorts of passwords certainly come with issues of their own).

Related

Gordon told Slate that he discovered the vulnerability by complete accident while playing with his phone during a lengthy road trip. “I’m sitting in the passenger seat, bored, with no signal on my phone, so I start poking around and seeing what unexpected behavior I can cause,” he said. “A few idle hours of tapping every conceivable combination of elements on the screen can do wonders for finding bugs.”

Happily, Google has already rolled out a patch for affected devices, including the Nexus 4, 5, 6, 7, 9, and 10. Still, other phone makers will need to distribute the appropriate software to their own devices to ensure a complete fix to the issue.

The problem, while not particularly widespread, certainly seems like a significant cause for concern, as one would hope that today’s phones are sophisticated enough to withstand “attacks” that are little more than a system overload generated by, well, lots of letters. After hacking into the phones, researchers at UT were able to access everything available on them, including data, applications, photos, and more.

Of course, the hackers would need to have physical access to your phone in order to do any damage, and you could avoid the situation altogether by simply implementing a PIN or pattern to protect your phone, but still, this latest revelation doesn’t exactly inspire faith in the software.

That being said, ExtremeTech points out that there really isn’t anything to worry about, and that such vulnerabilities are discovered and subsequently addressed relatively frequently. As Ryan Whitwam writes, “This is how software patches work when handled responsibly — an issue is reported, a patch is issued, and the method is disclosed. There’s nothing unusual about this flaw, and there aren’t millions of phones out there with broken lock screens. Don’t believe the hype.”

Editors' Recommendations

Topics
Lulu Chang
Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
I used a new type of smartphone that could replace Android
Two phones running Apostrophy OS, sitting next to each other on a chair.

When you buy a phone today, your first decision is to decide which operating system you want: Android or iOS. We've seen other platforms come and go over the years, from Windows Phone to Palm OS, but Android and iOS remain your two sole choices in 2024.

One of the last things I saw at CES 2024 earlier this month was a smartphone operating system that's trying to be that third choice between Android and iOS. It's called Apostrophy OS (also referred to as AphyOS), and I got to play around with it while also chatting with Apostrophy CEO Steve Cistulli to learn about the could-be Android and iOS alternative.
What is Apostrophy OS?

Read more
TCL just announced an insane number of Android phones at CES
Close-up view of the TCL 50 Series of smartphones.

TCL has done the unthinkable at CES 2024. It has announced seven new smartphones to kick off the new year. The TCL 50 Series is the company’s fifth generation of smartphones and includes everything from cost-effective 5G devices to all-new TCL NxtPaper models. This isn't the first time TCL has created a NxtPaper smartphone, but it is the first time we're seeing them come to the U.S.

TCL says the TCL 50 Series represents its dedication to providing users with various options and a satisfying experience. The lineup features numerous advancements, including an e-reader mode for book lovers and speedy 5G connectivity for those often on the move. Every model in the series has been crafted to offer a smooth entertainment experience, effective productivity, and a comfortable user experience.

Read more
Your Android phone just got an update that could save your life
A person holding the OnePlus 11 and Google Pixel 8.

When you’re in an emergency, every second matters. And if you already have your health information on your phone, it’s going to be even easier than ever to get that critical information over to operators. Now, when you make an emergency call on your Android phone, your health information can be sent directly to emergency services when you call 911.

This new feature update is made possible due to Google partnering with RapidSOS to allow data from Android ELS (Emergency Location Service) to be given to emergency contacts and first responders. The type of data that we’re talking about is critical medical information that can save your life, such as blood type, emergency contacts, and severe allergies. This is all information that the user sets up and is stored locally on their Android device.

Read more