The DiagEnabled, which is a @Qualcomm made activity, is the best class in this EngineerMode APK. Check the methods in this activity: escalatedUp(boolean, string) sounds like a cool thing no
?pic.twitter.com/iQFfam6eg6
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
Using @fridadotre and the script attached, I managed to bypass the escalate and isEscalated methods and become rootpic.twitter.com/oXGGEIqFad
Here the source code of the EngineerMode apk: https://github.com/fs0c131y/EngineerMode …. Feel free to dig on your own and share your findings!
cc @AndroidAuth @AndroidPolice @androidandme @Androidheadline @AndroidPolice @xdadevelopers @AndroidSPIN @Gadgets360 @TheHackersNews you have a subject here to write an article. It's not normal to have this kind of backdoor in an end user product...
EngineerMode APK is not the only interesting app left by @Oneplus. More thread to come :)
Awesome! Thanks to @insitusec and the @NowSecureMobile team, we have the password! It's now possible to root an @Oneplus device with a simple intentpic.twitter.com/gN0awYijBv
I will publish an application on the PlayStore to root your @OnePlus device in the next hours
Difficulty to install #SuperSu: 0! Everything is already preinstalled
.
The OnePlus root application is coming soon :)
The best thing in this story is the password. It's angela (see the reference?). This backdoor is here intentionally. When the fiction become a reality. Good luck @getpeid, you will need a very good explanation.
cc @whoismrrobotpic.twitter.com/IJgsu6hCEc
My Twitter at the moment. Thank you all for the impact you give to this story!pic.twitter.com/vcKlSrHwnT
I'm still waiting more samples to confirm but yes EngineerMode is installed on @OnePlus 5T. The DiagEnabled activity is here, so the backdoor too :)
Thanks to the awesome @AdrianoDiLuzio, it's pretty easy to install supersu!pic.twitter.com/TKjcrol6Js
Write up made by @AdrianoDiLuzio to root your OnePlus device using the backdoor + #Magisk:https://gist.github.com/aldur/b785257ac26d23bce648cad3ce2f6dc8 …
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.