A stolen Android phone PIN could be used to change your Google account password
Hackers only need your Android phone and its PIN to cause major damage
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
The Internet has recently been awash with frightening stories of how thieves could gain access to all of the deepest, darkest secrets that you keep on your iPhone, just by knowing your PIN number.
Simply by knowing your login PIN (and getting hold of your iPhone), it’s possible for anyone to change yourAppleID, locking you out of all other Apple devices, and even get unwanted access to your bank accounts and social networks.
Worryingly, experts have now found that the same is true of Android devices, which are equally at risk of such data theft.
Android PIN theft
On an Android device, users can navigate toGoogle> Manage your Google Account > Security > Password in the system Settings app. From there, they can click ‘Forgot password’ and use an option to use the phone’s screen lock code to change their Google account password.
Google’s software developers have made this possible because your phone is seen as your own, and when successfully logged in, it assumes you’re the user.
While useful on those occasions that you do forget your password, it doesn’t take into account thieves who know - or are able to figure out - your PIN.
9To5Googleexplained that this has been most commonly witnessed among iPhone users, presumably because they hold a higher resale value compared to initial cost, helping thieves to pocket some extra cash.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
These are the best ID theft protection tools>This stalkerware tracked thousands of Android and iPhones>A whole host of top Android apps really aren’t as private as they say
Regardless, the problem is no less severe among Android users who, like iPhone users, can have all of their otherwise unprotected data accessed and leaked.
Even protected data is at risk, assuming your passwords are stored in apassword managerthat can be accessed during an attack.
While it’s possible to prevent password-changing capabilities via PIN with Advanced Protection enabled, for many users, this is unrealistic as it requires a pair of physical security keys and some technical knowledge.
Customers worldwide are urging Google and Apple to consider this option more carefully but in the meantime, they can protect their data by limiting the types of apps that can be accessed via the phone’s login method, and carefully considering how they manage their passwords.
With several years’ experience freelancing in tech and automotive circles, Craig’s specific interests lie in technology that is designed to better our lives, including AI and ML, productivity aids, and smart fitness. He is also passionate about cars and the decarbonisation of personal transportation. As an avid bargain-hunter, you can be sure that any deal Craig finds is top value!
A new form of macOS malware is being used by devious North Korean hackers
Scammers are using fake copyright infringement claims to hack businesses
Belkin’s Travel Bag for Vision Pro has pockets and is way cheaper than Apple’s own case
