Android Kill Switch Could Remotely Brick Stolen Devices - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Mobile

Android Kill Switch Could Remotely Brick Stolen Devices

Users may soon have another weapon to combat thieves who pilfer Android smartphones or tablets -- a kill switch that goes beyond a remote data wipe.

Wearables At Work: 9 Security Steps Worth Taking
Wearables At Work: 9 Security Steps Worth Taking
(Click image for larger view and slideshow.)

Android users who find their beloved device lost or stolen may soon have another option for securing the data and personal information on their smartphone or tablet beyond the traditional remote data wipe.

Google merged change 235361 into the Android Open Source Project (AOSP) on Friday. The notes on the change explain:

When recovery starts with --brick, it tries to brick the device by securely wiping all the partitions as listed in /etc/recovery.brick.

This is designed to support bricking lost devices.

For companies with BYOD policies, the potential for an added security level is a good thing.

With the remote brick function, users would be able to prevent others from booting up their device. That's far more secure than having a thief access the device and potentially accessing personal data and account information, even after the tablet or phone has been wiped.

(Image: ozgurkeser/iStockphoto)

(Image: ozgurkeser/iStockphoto)

But Android device makers such as Samsung, HTC, or LG would need to take this AOSP change and incorporate it into their devices for the bricking feature to work, according to an XDA Developers report.

"Google developers recently merged a commit to AOSP that allows you to brick your smartphone via recovery mode. This feature will also be accessible via Android Device Manager too, and it is designed to let you securely wipe all partitions of your lost smartphone or tablet. This will need to be supported by OEMs though, as they'll need to designate the partitions in /etc/recovery.brick," XDA noted.

Although the brick feature would allow users to remotely brick the device, Android Police noted the implementations would still likely have a way for users to recover the device without special hardware once it's in their possession.   

[See 10 Stupid Moves That Threaten Your Company's Security.]

This feature is expected to be targeted at enterprise applications, possibly Android for Work, so administrators could brick the device as part of their mobile device management tricks, observed Android Police. The site pointed out that it's unlikely a consumer would be able to brick their device until Google developed a "foolproof software tool" for them to use.

How soon this feature may make it into Android devices has yet to be seen, but the change is there in the AOSP for manufacturers to consider.

Dawn Kawamoto is an Associate Editor for Dark Reading, where she covers cybersecurity news and trends. She is an award-winning journalist who has written and edited technology, management, leadership, career, finance, and innovation stories for such publications as CNET's ... View Full Bio

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
jastroff
50%
50%
jastroff,
User Rank: Ninja
6/8/2016 | 10:49:34 AM
Re: Reduced value
all good points -- I hope this doesn't happen >> though I can't help but feel this will be used as a trolling attack that bricks a lot of phones without people being aware of it.

 

But the bad guys seem to always find a way. We secured paper money behind big vault doors, beefed up the FBI and police forces way back when, and kep tthe money safe. But the US Govt also insured the money.

We seem not to be as smart about digital assets, unless we need a different line of thinking.
Whoopty
50%
50%
Whoopty,
User Rank: Ninja
6/8/2016 | 7:35:53 AM
Reduced value
Here's hoping this means that the market value for stolen phones takes a nose dive as that is what will really lead to a reduction in crime. It's good that people will be able to stop their devices being used from a distance - though I can't help but feel this will be used as a trolling attack that bricks a lot of phones without people being aware of it.
News
Python Beats R and SAS in Analytics Tool Survey
Jessica Davis, Senior Editor, Enterprise Apps,  9/3/2019
Slideshows
IT Careers: 10 Places to Look for Great Developers
Cynthia Harvey, Freelance Journalist, InformationWeek,  9/4/2019
Commentary
Cloud 2.0: A New Era for Public Cloud
Crystal Bedell, Technology Writer,  9/1/2019
White Papers
Register for InformationWeek Newsletters
State of the Cloud
State of the Cloud
Cloud has drastically changed how IT organizations consume and deploy services in the digital age. This research report will delve into public, private and hybrid cloud adoption trends, with a special focus on infrastructure as a service and its role in the enterprise. Find out the challenges organizations are experiencing, and the technologies and strategies they are using to manage and mitigate those challenges today.
Video
Current Issue
Data Science and AI in the Fast Lane
This IT Trend Report will help you gain insight into how quickly and dramatically data science is influencing how enterprises are managed and where they will derive business success. Read the report today!
Slideshows
Flash Poll