Following similar tests in Singapore, Thailand and Brazil, Google announced that it is piloting a new security initiative that automatically blocks side-loading of potentially dangerous Android apps in India.
The improved anti-fraud feature aims to keep users safe when they try to install malware from sources other than the Google Play Store, such as web browsers, messaging apps, and file managers.
The program that was launched for the first time in Singapore in early February this year has already blocked nearly 900,000 high-risk installations in the Southeast Asian country, the tech giant said.
“This advanced fraud protection will analyze and automatically block the installation of apps that may use sensitive permissions that are often abused for financial fraud,” said Eugene Liederman, director of mobile security strategy at Google. said.
It works by examining the permissions claimed by the third-party application in real-time and checking the permissions that commonly abused by malware to read SMS messages and notifications, and to use accessibility services to serve overlays and perform other malicious activities.
If any of the permissions are declared in the program manifesto (“AndroidManifest.xml”), Google Play Protect will intervene to automatically block installation on the end user’s Android device.
The pilot is scheduled to begin next month and is expected to gradually roll out to all Android devices running Google Play Services in the country.
“For developers distributing apps that could be affected by this pilot, now is a good time to reconsider permissions your app asks and make sure you subscribe developer best practices” said Liederman.
The development comes nearly a year after Google launched DigiKavach (which means “digital armor”) in India to fight online financial fraud and protect users from fraud and malware.
“Through this program, we study the methods and modus operandi of fraudsters, develop and implement countermeasures against new fraud, and share this information responsibly with dedicated experts and partners to help create a safer and more secure digital ecosystem for everyone,” said the Google India chief. Sanjay Gupta noted back in October 2023.
