A USB storage device is all it takes to bypass the factory reset protection feature of Samsung phones. RootJunky, an Android developer, shared the secret which exploits a flaw in how the Android OS in the South Korean phone giant implementation responds whenever a USB is plugged.
The Android Factory Reset Protection is supposed to make it impossible for thieves of Samsung phones from activating a new Google account if the thief attempts to use the factory reset feature, reports Phonearena.
RootJunky points out that when a USB storage device is plugged in and the Samsung phone detects the USB, the device automatically launches the File Manager app which is maintained during the phone's setup process. The developer first loaded an APK file on an OTG USB drive then plugs it into a Samsung smartphone.
When the phone opens the APK, it automatically launches the File Manager. This paves the way for the app to perform a second factory reset on the phone, effectively bypassing the unit's Android Factory Reset Protection system. The whole process takes only a few minutes.
The video has become viral with almost 30,000 hits in one week. It also elicited more than 100 comments on YouTube's comment section.
NTN Labs, for instance, asked if the factory reset protection would trigger with no data connection. RootJunky replies that it would. Cantrel woodley asked if the method would work without an OTG drive. The developer says an OTG drive or cable is needed.
The method works on all Samsung phones with Android 5.1 OS and newer OS. Other techies asked the developer if the same method could be done on other smartphone models such as the HTC One M9.
However, Patrick Polish points out that while RootJunky just outsmarted Samsung, since it is not a vulnerability, Samsung could now stop the bypass by preventing any apps from launching before full setup is complete.