Another Shady App Found Pre-Installed on OnePlus Phones that Collects System Logs

OnePlus Saga is in progress ...

One day after the revelation of hidden Android, a security researcher pre-installed on most OnePlus smartphones has just got another secret app that records a lot of information about your phone.

Dubbed OnePlus LogKit, a single Twitter user has been searched by, run by the pseudonym "Elliott Elderson" and found out the controversial "Engineer MOD" diagnostic test application which used to root toolless devices without unlocking the bootloader can go.

OnePlusLogKit is a system-level application that is capable of capturing many things from OnePlus smartphone, which includes:

• Wi-Fi, NFC, Bluetooth, and GPS location logs,
• Modem Signals and Data Logs, Hot and Power Issue Logs,
• List of ongoing procedures, list of ongoing services and battery status,
• Media Database, in which all your videos and images are saved on the device.

Unlike the engineer mode (which was found on devices by several manufacturers including HTC, Samsung, LG, Sony, Huawei and Motorola), OnePlus LogKit application (Decompiled APK) is most certainly only available in OnePlus Devices

Since OnePlusLogKit is disabled by default, therefore the attacker will need access to the victim's smartphone to enable it

With physical access to targeted smartphones, anyone can enable it by dialing * # 800 # → "OnePluged Logkit" →, "Save Logs", or use any social engineering so that the device's Owner can do it on his own.

Once enabled, any other application installed on your device can collect remotely logged information (un-encrypted stored in / sdcard / oem_log / folder) without the need for user interaction.

Although the app is designed to log the events / activities to diagnose system issues for device makers and engineers in question, the information gathered here can also be used for nefarious purposes.

OnePlus has not yet commented on this latest issue, while the Chinese company did not see the previous Engineered-Modified Diagnostic Tool as a major security problem, although it promised to remove the ADB Root function in the forthcoming OxygenOS update.

"Although it can enable ADB Root which gives privilege for ADB commands, it will not allow third-party applications to reach full root privileges," a plus spokesman said in a statement.

"Additionally, the ADB root can only be accessed when USB debugging, which stops by default, is on, and any kind of root access will still require physical access on your device. "

It is believed that Qualcomm is the creator of the engineer mode APK, also responded to the allegations, and said that their original app has the source code mark, but the current APK of the devices by the current manufacturers has been modified by some other person. is.

• "After a thorough investigation, we have determined that the engineer mode in question was not written by App Kwakom," Qualcomm Claims
• "Although the remains of some Qualcomm source code are clear, we believe that others were created in the past, likewise the Qualcomm test app that was limited to displaying the information of the device. EngineerRoad now matches the original code we provide Do not eat. "
• Meanwhile, another security researcher has released an Android application to route a plus phone immediately using the secret opened in the engineer-mode....
•