Google has announced in its most recent security update that it has patched a vulnerability in its factory reset protection feature. The Android factory reset protection is a feature in newer Android devices where your device is protected from other people trying to log into it, even after a reset to factory defaults. Lots of rumors are going around saying that Nexus devices are vulnerable to this bug, but it will be good for you to know Google has already patched that bug.
Usually, all it took to gain usage of a lost or stolen Android device was to wipe it to factory defaults and enter your own account. Android has implemented a feature to protect your phone from that, requiring an email address login from the same email account that first owned it. Some rumors are going around saying that there is a way to get around this. The truth? There WAS – as shown by the video below. But after the January patch, that bug has been rightfully squished.
If you see the video above, you will realize that the phone used was still using the December patch. So the rumors are true, there was a bug. This video came out only recently, implying that there still is a bug – but the truth is that the January security update fixed that.
This is another reason why you should keep your devices updated with the newest security patches available. Make sure that your device is up-to-date with your manufacturer or your carrier's patches.
VIA: Android Police