Even the most inexperienced users can no longer be afraid of scammers.
Google launching a new pilot program to combat financial fraud, which aims to block the installation of external APKs that request access to risky permissions.
APK or Android Package is a file format used for distributing and installing apps on Android. Unlike iOS, where official apps can only be installed from the company's store, APK files for Android can be downloaded and installed from any resource, which is what attackers use in attempts to distribute malicious software.
Although placing malware in the official Google Play is hypothetically possible, it is much more difficult and longer to do this than using social engineering and convincing a potential victim to download malware from a conditional file sharing site and other unverified sources.
Malicious apps often pose as legitimate software, so users can reveal even more data to hackers than they would have received simply by activating the malware on their device. This can happen, for example, when a user enters their real bank data into a fake application, which allows attackers to conduct full-fledged financial scams.
Google reports that in 2023, fraud caused more than $ 1 trillion in monetary losses to users, with 78% of users surveyed by the company experiencing fraud attempts at least once in a year.
In October 2023, Google Play Protect received a new security feature that allows you to scan APKs downloaded from third-party app stores and websites in real time. This feature has been implemented in major markets, including India, Thailand, Brazil, and Singapore. It is expected to expand to other countries later this year.
Google reports that the new feature has already identified about 515,000 unwanted apps and prevented or blocked 3.1 million installs.
Now, to further enhance security, Google is launching a pilot program in Singapore that will automatically block the installation of APKs requesting access to the following risky permissions:
Google plans to closely monitor the results of the pilot program in Singapore in collaboration with the local security agency to assess its impact and adjust it.
While Google is considering expanding the pilot to other countries, Android users are advised to avoid downloading apps from unverified sources. And if there is still a need for this, carefully check the requested permissions during installation.
Google launching a new pilot program to combat financial fraud, which aims to block the installation of external APKs that request access to risky permissions.
APK or Android Package is a file format used for distributing and installing apps on Android. Unlike iOS, where official apps can only be installed from the company's store, APK files for Android can be downloaded and installed from any resource, which is what attackers use in attempts to distribute malicious software.
Although placing malware in the official Google Play is hypothetically possible, it is much more difficult and longer to do this than using social engineering and convincing a potential victim to download malware from a conditional file sharing site and other unverified sources.
Malicious apps often pose as legitimate software, so users can reveal even more data to hackers than they would have received simply by activating the malware on their device. This can happen, for example, when a user enters their real bank data into a fake application, which allows attackers to conduct full-fledged financial scams.
Google reports that in 2023, fraud caused more than $ 1 trillion in monetary losses to users, with 78% of users surveyed by the company experiencing fraud attempts at least once in a year.
In October 2023, Google Play Protect received a new security feature that allows you to scan APKs downloaded from third-party app stores and websites in real time. This feature has been implemented in major markets, including India, Thailand, Brazil, and Singapore. It is expected to expand to other countries later this year.
Google reports that the new feature has already identified about 515,000 unwanted apps and prevented or blocked 3.1 million installs.
Now, to further enhance security, Google is launching a pilot program in Singapore that will automatically block the installation of APKs requesting access to the following risky permissions:
- RECEIVE_SMS and READ_SMS — used by attackers to intercept one-time passwords (OTP) or authentication codes sent via SMS, which allows unauthorized access to victims accounts.
- BIND_Notifications-Used by attackers to read or reject notifications from legitimate applications, including security or OTP notifications, potentially without the user's knowledge.
- Accessibility is a permission that was originally intended to help users with disabilities, and provides a malicious application with broad access to control the device and its functions. Attackers use it to monitor user actions, extract confidential data, enter keys and execute commands from a distance, which often leads to a complete compromise of the device.
Google plans to closely monitor the results of the pilot program in Singapore in collaboration with the local security agency to assess its impact and adjust it.
While Google is considering expanding the pilot to other countries, Android users are advised to avoid downloading apps from unverified sources. And if there is still a need for this, carefully check the requested permissions during installation.
