February 7, 2024 at 01:59PM
Google is fighting financial fraud by blocking the sideloading of Android APK files with risky permissions. Scams cost Android users over $1 trillion in 2023, so Google has launched a pilot program to scan APKs and block installations that request risky permissions. This security feature has already identified many unwanted apps and installations in select markets.
Based on the meeting notes, Google has launched a pilot program to fight financial fraud by blocking the sideloading of Android APK files that request access to risky permissions. This move comes in response to the increasing prevalence of financial fraud and scams targeting Android users, which cost users over $1 trillion in losses in 2023, according to Google. To combat these threats, Google has introduced new security features, such as real-time scanning of APKs downloaded from third-party app stores and websites. This feature has already identified 515,000 unwanted apps and blocked 3.1 million installations.
In an effort to strengthen protections against unwanted apps, Google is launching a pilot in Singapore to block the installation of APKs that request access to risky permissions. These permissions include RECEIVE_SMS, READ_SMS, BIND_Notifications, and Accessibility, all of which are frequently exploited by threat actors to conduct financial fraud and other malicious activities. The pilot will automatically block the installation of applications from internet-sideloading sources that declare any of these four permissions in Singapore.
It is important for Android users to be cautious when downloading APKs, scrutinize permissions requested during installation, and regularly run Play Protect scans to protect themselves against potential threats. Google is also expected to roll out this new protection feature to other countries, although the timeline for this expansion has yet to be confirmed.
Overall, the meeting notes highlight Google’s commitment to enhancing security measures to protect Android users from financial fraud and scams.