GreedFall: The Dying World will leave early access in early March.

Android 16 Introduces Feature to Record Intruder Actions

In the Android 16 security update, Google has introduced a new Intrusion Logging feature designed to meticulously record the actions of an intruder during unauthorized access to a device. This tool aims to significantly simplify the subsequent analysis of smartphone and tablet hacking incidents.

The feature became available to a subset of users following the release of Android 16 QPR2. To start using it, users need to activate the option in the device's advanced security settings. Once enabled, the system immediately begins recording key events—from connections to peripheral devices and app installations to screen unlock times, browser history elements, and other security-related activities.

All collected data is stored in a secure repository using end-to-end encryption. Access to the logs is strictly limited: only the device owner or a trusted Google account can retrieve them. By default, logs are automatically deleted after 12 months, but the user has the right to manually erase them at any time if deemed necessary.

If the system detects suspicious activity—such as unexpected app installations or clear signs of a breach—the device owner is empowered to take action. They can independently review the event log to understand what happened to their gadget or forward the logs to a cybersecurity specialist for a more in-depth analysis.

This feature will be particularly useful for those who may potentially become targets of targeted attacks: journalists, activists, developers, and employees of organizations with heightened data protection requirements.