Factory app discovered after OnePlus telemetry scandal
Speaking to Bleeping Computer, the researcher said he started investigating OnePlus devices after a story he saw online last month detailing a hidden stream of telemetry data sent by OnePlus devices to the company's servers.
The researcher, who also owns a OnePlus 5 device, started investigating the company's OS by first looking at the source code of OpDeviceManager, the app that was responsible for the telemetry collection.
"We don't have a PoC yet, but it's a question of time," the researcher told Bleeping Computer.
Besides the issue with hidden user telemetry collection, cyber-security firm Aleph Research also discovered that some OnePlus devices are vulnerable to OS downgrade attacks.