The dust has barely settled on OnePlus' private data collection issue, and already a new challenge has cropped up for the company. While this might sound exciting, due to the possibility of obtaining root access without unlocking the phone, this actually has serious security repercussions.
People often tout OnePlus phones as an alternative to the Pixel line now that Google abandoned the Nexus concept of affordable, high-quality phones.
According to one developer named as Elliot Alderson, OnePlus has an application called as "EngineerMode", which is basically used to check whether the unit is working properly or not in the factory.
You can also check if this application is installed on your OnePlus device or not. It's even included on OxygenOS for the OnePlus One, but not the original CyanogenOS ROM.
And if you are thinking how did the developer get the password, it was with the help of some security experts.
As a diagnostic app, EngineerMode has a few tricks to gain entry into parts of the file system and OS functionality unavailable to most apps. It is possible to exploit the app to gain root access to a device - all it takes is a simple command and a password that can be determined fairly easily.
He plans to release an app for rooting OnePlus devices sometime today, and we'll update the post when it is released. As one can imagine, it isn't meant for consumers' use and OnePlus' fault is that it didn't remove the app before it shipped the OnePlus phones.