Google has implemented major security enhancements across its Android ecosystem in 2024, with significant measures to protect users from harmful applications and unauthorized data access. The company blocked 2.36 million risky Android apps from the Play Store throughout the year, targeting both policy-violating apps and those identified as malicious through AI-assisted reviews. The effort extends Google’s ongoing work to strengthen Android security, which has included enhanced biometric authentication and passkey implementation.
The company’s AI-powered threat detection system has automated 92 percent of human reviews, substantially improving the speed and accuracy of identifying malicious apps before they reach users. The automation marks a significant advancement in Google’s proactive security measures, particularly important given the rising threat of AI-powered cyber attacks targeting mobile users.
For developers, Google introduced new tools to secure apps from malicious SDKs and abuse. The Google Play SDK index expanded to include 80 additional trusted SDKs. The increased adoption of the Play Integrity API resulted in an 80 percent reduction in abuse from untrusted sources, showing substantial progress in maintaining platform security.
Privacy protections were strengthened, with 1.3 million apps prevented from gaining excessive access to sensitive user data. The company introduced new developer requirements and a “Data deletion” option to enhance transparency and user control over data handling practices, following broader industry movement toward stronger privacy controls.
Google Play Protect, Android’s built-in security system, identified over 13 million new malware apps from outside the Google Play ecosystem. The detection rate represents a significant increase, particularly relevant given recent incidents like the BADBOX malware operation that affected hundreds of thousands of Android devices. New features include reminder notifications in Chrome to re-enable Play Protect if disabled, protection against social engineering attacks during calls, automatic revocation of permissions for potentially dangerous apps, and enhanced fraud protection pilots.
The company expanded its untrusted APK installation blocking system beyond its initial pilot in Singapore to multiple regions including Brazil, Hong Kong, India, Kenya, Nigeria, the Philippines, South Africa, Thailand, and Vietnam. The system aims to prevent unauthorized app installations that exploit sensitive permissions, addressing a significant security vulnerability in these markets.
Users are advised to follow several security practices, including installing apps only from reputable publishers, maintaining a minimal number of installed apps, regularly reviewing app permissions, and ensuring Play Protect remains enabled at all times. The recommendations are particularly crucial given the emergence of sophisticated mobile malware like the “ghost tapping” scam targeting banking users.
Sources: Bleeping Computer, Security Online, Phone Arena, NquiringMinds
Follow Us