Android's source reveals Google is adding a feature to its mobile operating system that makes it possible for a third-party to brick a device with an over-the-air update. Remotely bricking a device is not new, there are many apps available that allow an user to trace a phone and wipe it when it's stolen or lost. However this feature allows a third-party to push an update to the phone that will brick it.
Therefore usage of the feature appears to be limited to organisations that can release Over-The-Air (OTA) updates such as e.g. telecom operators or phone manufacturers. To create an update that is able to remotely brick an Android device, a script has to be called with a specific option. The developer of the feature writes, "Add an option "--gen_brick" to generate a brick OTA package that bricks a device by formatting system and userdata partitions. This is only supposed to be used under extreme circumstances (e.g. lost devices)."
A comment in the source code of the new feature explains that it will format several partitions on an Android device in order to brick it.
--gen_brick
Generate an OTA package that bricks a device by formatting the
/system, /vendor (if present), /data, /cache, /boot, /recovery
partitions.
It's unclear whether the feature will make it to Android N, or a later version of the OS.
