If you are a Magisk user, and you fired up Pokemon Go or Android Pay today just to be met with an error message, you aren't alone. The game of cat and rooted mouse continues, as Google's detection methods have expanded again to catch Magisk 13.2, which is the latest version. But, Magisk...
There's been a lot of talk about the recent changes to SafetyNet and how it could impact devices in the future. The CTO of CopperheadOS says that the current implementation of SafetyNet is very haphazardly implemented, but will eventually evolve into real remote attestation.
Google uses SafetyNet to find out if your device has the potential to be compromised thanks to root, a custom recovery, etc. There are ways to get around this check though but it seems like Google has updated their side of things as people are saying their methods aren't working.
Magisk is a tool to help people bypass the SafetyNet checks so they can use applications like Android Pay while their phone is rooted. However, it's being reported that SafetyNet has just been updated and that it is no longer being bypassed by Magisk.
Some non-rooted users are experiencing issues with SafetyNet, Google's API that is designed to detect rooted and modified devices. Reports on reddit have surfaced from users with unlocked but non-rooted phones being unable to use Android Pay because of it.
There have been a number of methods to hide root on devices so people could continue to use Android Pay, play Pokemon Go, etc. The latest update to SafetyNet has patched these methods and will no longer let you hide root from Android apps.