Google is stepping up its battle against smartphone theft with a major security overhaul in Android 16. During The Android Show: I/O Edition, held just ahead of Google I/O 2025, the tech giant previewed some powerful new features, including an upgraded Factory Reset Protection (FRP) system that could make stolen Android phones completely unusable.
This move is part of Google's broader commitment to smartphone safety, aiming to eliminate loopholes that allow stolen phones to be reused or resold.
One of the key announcements at The Android Show was a major enhancement to Factory Reset Protection (FRP). This updated system will be integrated into Android 16 and is expected to roll out later in 2025. The new feature aims to shut down unauthorised access to stolen devices, even if thieves try to reset them.
Currently, FRP activates when a device is reset using Google’s Find My Device or recovery mode, requiring the original user’s Google account credentials or screen lock to proceed.
Although the current FRP mechanism deters casual thieves, some have found ways to bypass the setup wizard, allowing limited functionality that makes stolen phones appear usable for resale.
With the Android 16 update, Google is putting an end to that workaround. The enhanced FRP will detect when a device reset attempts to bypass the setup process. If it spots suspicious behavior, the system will trigger another factory reset, forcing the user to verify ownership through previous credentials.
A screenshot shared during the event showed the updated FRP message:
“This device was reset but authentication failed during setup. To use this device, reset again and enter the device’s previous screen lock or Google Account credentials.”
This message implies that the device won’t allow any functionality, including basic features like emergency calls or access to settings, unless ownership is confirmed. The phone essentially becomes useless until the rightful owner steps in.
As part of the broader theft protection suite, Google has already rolled out a new feature called Identity Check. This layer of security helps protect your data even if your password or PIN is compromised.
It is currently available for Pixel and Samsung devices running One UI 7, and Google has confirmed plans to expand it to more manufacturers as they adopt Android 16.
In an added effort to improve security, Android 16 introduces protections for one-time passwords (OTPs).
“In higher risk scenarios, Android will hide one-time passwords on your lock screen, ensuring that only you can see them after unlocking your device,”
Google said in its official blog post.
This feature will prevent attackers from accessing sensitive codes directly from the notification bar.
These features are part of Google’s goal to make Android safer across the board. As more OEMs begin adopting Android 16, features like Identity Check and OTP protection will reach a wider user base in the coming months.
While Google showcased the new FRP features, the company has not confirmed whether they will be included in the initial stable release of Android 16 or be rolled out via a later update. The final timeline is still under wraps.
Given the complexity and importance of the FRP upgrade, it’s possible Google may introduce it in a phased rollout, ensuring robust testing across multiple devices before a full release.