While Android's open platform allows app downloads from outside the Play Store, this freedom carries risks. Users face potential fraud, especially from questionable internet downloads. Addressing this concern, Google announced a pilot program within Google Play Protect to enhance fraud protection for Android users.
- New Google Play Protect feature blocks shady app installs focusing on permissions for SMS, notifications, and accessibility.
- Pilot program in Singapore first, aims to expand globally later to combat rising mobile scams
- Google targets apps trying to steal one-time passwords or spy on your phone screen.
While Android's open platform allows app downloads from outside the Play Store, this freedom carries risks. Users face potential fraud, especially from questionable internet downloads. Addressing this concern, Google announced a pilot program within Google Play Protect to enhance fraud protection for Android users. In partnership with the Cyber Security Agency of Singapore (CSA), the initial trials will launch there in the coming weeks.
This upgraded protection analyzes and blocks app installations that might exploit sensitive permissions commonly abused for financial fraud. This applies to app installations outside the Play Store, via web browsers, messaging apps, or file managers.
Google's real-time app scan in use | Image Credit: Google |
The system scrutinizes declared app permissions in real-time, focusing on four key requests: RECEIVE_SMS, READ_SMS, BIND_Notifications, and Accessibility. These permissions are often exploited by fraudsters to intercept one-time passwords or monitor screen content.
During the pilot, attempting to install an app with these permissions from an external source will trigger Play Protect to block the installation and provide an explanation. While initially exclusive to Singapore and Android devices with Google Play services, this feature is expected to roll out globally after the pilot concludes, though a specific timeline remains unclear.
The need for such measures is evident. The 2023 Global State of Scams report revealed that 78% of surveyed mobile users encountered at least one scam in the past year, with 45% reporting an increase in scam encounters within the last twelve months. The report also highlighted scam links sent through messaging platforms to trick users into installing malicious apps, often accompanied by phone calls impersonating legitimate entities.
This pilot program represents a significant step towards protecting Android users from potentially harmful apps downloaded outside the Play Store. By blocking installations that request suspicious permissions, Google aims to mitigate the risk of financial fraud and enhance overall user safety.