AfterDawn: Tech news

Avast: Android's built-in factory reset option will not wipe your phone properly

Written by Andre Yoskowitz (Google+) @ 09 Jul 2014 20:04 User comments (3)

Avast: Android's built-in factory reset option will not wipe your phone properly Avast, the makers of security products for mobile and desktop devices, are claiming that Android's built-in factory reset option does a poor job of really deleting your personal information.
Potentially hundreds of millions of Android users have used the option to wipe their phone before selling it, donating it, or trading it in for a new upgrade, which leaves a scary amount of data out there.

The security firm purchased 20 used Android smartphones from eBay and was able to recover 40,000 photos (including 250 nude selfies of men and 750 of nude or partially nude women), 750 emails and texts, 250 contacts and even the identities of four of the owners.

Avast mobile division president Jude McColgan says the resets are only "at the application layer" while "users thought they were doing a clean wipe and factory reinstall" that should have removed all of their data from the disks. The company used easily accessible forensic tools and drive imaging programs like FTK Imager to recover the data.

In their report, the company added: "Although at first glance the phones appeared thoroughly erased, we quickly retrieved a lot of private data. In most cases, we got to the low-level analysis, which helped us recover SMS and chat messages." Of course, there are not too many people out there that would know to use drive imaging programs to recover wiped data from a phone they bought on eBay, but the implications are terrifying for those that do. Avast does recommend their own Mobile Security application with Anti-Theft app (for free) for those that want a more secure erase.

Source:
Avast

Tags: Android Avast
Previous Next  

3 user comments

111.7.2014 11:18

What a surprise!!!

Security community has made a formal warning to the US FTC about how sloppy IoT security and testing is. They warned there is no formal testing for most smart devices and even less security. They claimed that they were an extreme danger to the world, and especially for the users. They were very alarmed that medical devices that if they malfunction can kill the user don't receive anymore testing than a security camera. They also warned users will not have a choice to buy a dumb device. Large screen TVs are already there. The security expert wanted a dumb vary large screen TV because of the extreme security risk of buying a smart TV. There were none available in the screen size she wanted.

You can assume your smart phone is infected.

211.7.2014 14:47

Originally posted by Mez:
What a surprise!!!
Gah, IKR. They're able to release this alpha/beta software, in part because there are SO many that make similar things (not 100% sure what I'm aiming at :))

Wish there'd be a developer to put a stop to all that - like when the Dreamweaver set a standard for web-development software (you know, just something unbeatable).

Z68A-G43 (G3) - i7-3770 - Vengeance 2x4GB 2133MHz - GTX 650 Gainward - WD 1TB 64MB SATA - Win7 Pro/64 SP1 / Trusty Xfce AMD64

315.7.2014 13:53

One of the things they were pushing for was a library of well tested routines that companies could purchase. They also need a way to detect and clean infections. The stumbling point there is most of these chips are made in China and their is evidence that may suggest the devices are designed to harbor malware and include hardware making them effective attack devices. The bigger question are these random acts by rouge engineers or are these company or government sponsored projects.

I don't have a recent version of Dreamweaver C5) butit used to pretty much force you into keeping FTP login info in the app. Botnets target Dreamweaver to get that info and take over your web sites.

Comments have been disabled for this article.

Latest news

A bug in Chrome allows you to download Netflix movies A bug in Chrome allows you to download Netflix movies (25 Jun 2016 15:21)
A group of security researchers have found a vulnerability in Google's Chrome browser that allows downloading movies straight from Netflix. This is obviously not a feature especially the entertainment ....
2 user comments
Three out of four Netflix customers would rather cancel than watch ads Three out of four Netflix customers would rather cancel than watch ads (25 Jun 2016 14:05)
For a long time Netflix was adamant on its pricing. No changes were made for a long time and everything seemed to be good. The markets obviously reacted and more expensive deals and original ....
3 user comments
Apple Music left in the dust, Spotify at 100 million subscribers Apple Music left in the dust, Spotify at 100 million subscribers (25 Jun 2016 12:01)
Spotify has told The Telegraph that it has surpassed the 100 million mark in subscribers. Paying subscribers was earlier this year reported to have passed 30 million. Apple meanwhile is having ....
2 user comments
Rumor has it that Apple has cancelled iPhone's dual camera Rumor has it that Apple has cancelled iPhone's dual camera (18 Jun 2016 18:05)
The next iPhone will be a major upgrade to current iPhone 6s. This biyearly full upgrade cycle provides us with a bigger upgrade every two years. But how will Apple update its number one product, ....
6 user comments
OnePlus releases new flagship killer, smaller X discontinued OnePlus releases new "flagship killer", smaller X discontinued (18 Jun 2016 16:11)
The small Chinese smartphone maker OnePlus took the world by storm two years ago by releasing a super cheap flagship smartphone. They called it the flagship killer, and it indeed challenged ....
4 user comments

News archive