Google has issued a warning to users about downloading malicious apps, focusing on improving security for its Android devices.
To combat increasing risks from sideloaded apps (apps downloaded from outside the Google Play Store), Google is introducing enhanced safety features and AI-powered live threat detection. This initiative aims to protect users from malware, which can exploit certain permissions to commit financial fraud.
Key permissions that pose risks include:
- **RECEIVE_SMS** (receiving SMS messages)
- **READ_SMS** (reading SMS messages)
- **BIND_Notifications** (binding to notifications)
- **Accessibility** (accessing screen content)
These permissions can be exploited by malware to intercept one-time passwords, spy on screen content, or manipulate other sensitive information, particularly in banking apps.
Google Play Protect, a defense system that scans for harmful apps, will now block the installation of apps with these high-risk permissions when downloaded from outside official sources. This feature has already blocked millions of malicious apps globally and is being tested in India with plans for a broader rollout.
Google urges developers to review the permissions their apps request and follow best practices to ensure they don't overstep security boundaries. The company is working alongside governments and industry partners to create safer mobile experiences.
Source:
The Metro