Key Takeaways
A factory reset will remove most common viruses and other forms of malware. Specialized viruses and malware that can survive a factory reset exist, but they're quite rare.
Viruses and other types of malware are an unfortunate reality in today's digital era. If your phone or computer has been infected, performing a factory reset is one of the suggested remedies. However, does this guarantee the safety of your device? Here is all the essential information you should be aware of. This article for Cybersecurity Awareness Week is presented in collaboration with Incogni.
What Is a Factory Reset?
A factory reset is available on various modern electronic devices, such as computers and smartphones, and allows you to restore the device's operating system (OS) and drivers to their original state. It also resets all settings to their default values and removes any programs or files that were not originally included with the device. However, in the case of computers, you have the option to retain your files. If you are resetting your system to eliminate viruses, it is advisable to first back up any important files before deleting everything.
Interestingly, the term "factory reset" implies that the device will return to its original state when it was shipped or purchased. However, this is not always the case, especially for phones and tablets that have received an upgraded operating system.
The factory reset option on a phone or tablet that has been upgraded to a new operating system will result in the device returning to a fresh install of the current OS, rather than its original OS. However, the functionality of this option remains the same when it comes to addressing malware infections, just like a traditional factory reset.
Will a Factory Reset Remove Viruses?
Factory resetting your device is an effective method to eliminate most viruses and malware. By restoring the operating system to its original state, the option inadvertently eradicates any infected programs or files. Although it is an extreme measure, it generally proves successful, except in rare cases.
As each year passes, viruses continue to evolve in sophistication, allowing cybercriminals to discover fresh avenues for infecting unsuspecting devices. Consequently, there may be instances where trojans and rootkits manage to withstand a factory reset, although this is relatively uncommon. One notable example is xHelper, a trojan that emerged in 2019, specifically targeting Android devices and persisting even after a factory reset. However, in 2020, MalwareBytes was able to develop a solution for its removal.
What If the Virus Returns After Factory Reset?
If your device remains infected with malware that persists even after performing a factory reset, it is possible that you are facing one of the situations listed below:
1. Your backup is infected, and when you attempt to restore it onto your recently reset device, the malware transfers to your device and reinfects it.
The malware may have also infiltrated your device's recovery partition, which is a section of storage dedicated to storing a clean system image for factory reset purposes. In this case, performing a factory reset will not effectively resolve the issue. Additionally, advanced forms of malware such as rootkits and bootkits are capable of infecting your device and can easily avoid detection and removal through a factory reset.
State-of-the-art malware has the capability to hide in peripherals such as Wi-Fi adapters and webcams, utilizing their onboard storage to preserve a copy of itself. This means that even if you reset your device, the malware can still re-infect it from the peripheral. Fortunately, occurrences of this nature are uncommon. However, if you find yourself encountering such malware, you have a few options to consider. Alternatively, if you lack technical expertise, seeking assistance from a computer technician or other experts would be advisable.
To address stubborn malware that persists even after a factory reset, you can attempt scanning the backup drive by connecting it to a reliable antivirus-equipped device. Another option is to utilize a rescue disc to thoroughly examine your device, including the recovery partition, in order to ensure that no malicious elements remain undetected.
If the aforementioned methods prove ineffective, the next course of action would involve completely erasing your computer's SSD or HDD and performing a clean installation by eliminating all existing partitions.
If the malware is affecting your mobile device and a factory reset is not effective, it is advisable to contact your device manufacturer for assistance. Due to limited root access on mobile devices, performing anything more than a factory reset can be challenging. Your device manufacturer will most likely be capable of completely wiping the storage and installing a new OS image to remove the infection.
Nevertheless, as mentioned earlier, these types of malware are uncommon. It is more probable that you are experiencing repeated infections rather than the infection persisting after a factory reset. Fortunately, there are numerous solutions available for addressing this specific issue.
How to Avoid Getting Viruses Again
Prevention is always better than having to find a cure. If you have successfully avoided a malware infection by resetting your device to its factory settings, it is highly recommended to take measures to ensure its future security. One of the most effective and simplest ways to accomplish this is by keeping your device's operating system and apps up-to-date with the latest updates.
Additionally, it is advisable to only install applications and programs from trusted sources, preferably from official app stores. Refrain from falling into the trap of downloading free games or apps from unverified sources. However, it is important to stay cautious, as even apps from reliable sources have been known to introduce viruses by prompting users to download malicious updates from external sources.
Avoid clicking on unfamiliar links or opening suspicious attachments in chat messages or emails to protect yourself.
Although modern operating systems have built-in malware protection, you can enhance your security by installing Malwarebytes. It is compatible with popular operating systems. For further recommendations, refer to our guide on the top antivirus software options.
The Last Resort
If your computer or smartphone has fallen victim to malware, the factory reset serves as an effective solution and is akin to a nuclear option. Nevertheless, it should be regarded as a measure of last resort due to the inconvenience of having to reinstall and configure all settings again, resulting in a significant time investment. Ultimately, adopting good cyber hygiene practices and taking basic security precautions can greatly minimize the risk of encountering malware and enhance the overall security of your digital life.