Your Android device will automatically reboot after three days of inactivity

In a quiet but notable update, Google has introduced a new security feature to its Android operating system that automatically reboots a device if it remains locked for three consecutive days. The change was rolled out on Monday as part of an update to Google Play Services, the underlying framework that supports both Android apps and the system’s core functionalities.

The new feature appears under the “Security & Privacy” settings and is described as a protective measure: “Your device will automatically restart if locked for 3 consecutive days.” While Google has not issued an official statement or explanation regarding the reasoning behind this update, it’s widely interpreted as a move to enhance user privacy and make unauthorized access to locked devices more difficult.

Apple implemented a similar mechanism on iPhones last year, reflecting a growing trend among major tech companies to fortify device security against forensic intrusion, especially in cases where devices fall into the hands of law enforcement or malicious actors.

At the heart of the matter lies the distinction between two security states of smartphones: “Before First Unlock” and “After First Unlock.” In the “Before First Unlock” state—when a phone has been powered off and not yet unlocked—much of the device’s data remains encrypted and nearly inaccessible without the user’s passcode. Once the device is unlocked, it enters the “After First Unlock” state, during which certain types of data become more vulnerable to extraction, including via brute-force attacks or software-based exploits.

Tools commonly used by forensic investigators, such as those developed by Cellebrite or Magnet Forensics, often rely on gaining access to phones after they’ve been powered on and used, when more data is available for retrieval. The new Android feature disrupts this tactic by regularly cycling the device back into the more secure “Before First Unlock” state if it's not actively being used.

This additional layer of defense could prove particularly frustrating for investigators or anyone attempting to crack a phone left idle for an extended period. Each reboot effectively re-encrypts data and resets the opportunity window for data extraction attempts.

While Google has yet to clarify its motivations or provide detailed documentation about the rollout, the implications are clear: privacy and data security remain central to Android's ongoing development. The automatic reboot feature appears to be available globally, and it’s expected to be standard across Android devices receiving updates to the latest version of Google Play Services.

As digital security becomes an increasingly contentious issue—balancing privacy rights with law enforcement needs—this subtle yet significant change positions Google alongside Apple in reinforcing the digital fortresses we carry in our pockets.