Android Will Now Scan Sideloaded Apps For Malware At Install Time (arstechnica.com) 41
Ron Amadeo reports via Ars Technica: To help combat the surge of sideloaded malware, Google Play can now pop up a malware scanner at install time if it decides the app you're trying to sideload is interesting. Google Play's malware system, called "Google Play Protect," has always been able to check sideloaded apps for malware, but it used faster techniques like a definition file, and this happened quietly in the background. This new technique will delay your app installation with a full-screen "scanning" interface while Google runs a deep scan of the app code. Google's blog post says this is "real-time scanning at the code-level to combat novel malicious apps" and that Google Play Protect can "recommend a real-time app scan when installing apps that have never been scanned before to help detect emerging threats."
The scan will involve sending bits and pieces of the app to Google for analysis. Google says: "Scanning will extract important signals from the app and send them to the Play Protect backend infrastructure for a code-level evaluation. Once the real-time analysis is complete, users will get a result letting them know if the app looks safe to install or if the scan determined the app is potentially harmful. This enhancement will help better protect users against malicious polymorphic apps that leverage various methods, such as AI, to be altered to avoid detection." [...] Google is first rolling this feature out in India -- a country that topped the malware distribution charts in that 2018 report -- with the company saying the feature "will expand to all regions in the coming months."
The scan will involve sending bits and pieces of the app to Google for analysis. Google says: "Scanning will extract important signals from the app and send them to the Play Protect backend infrastructure for a code-level evaluation. Once the real-time analysis is complete, users will get a result letting them know if the app looks safe to install or if the scan determined the app is potentially harmful. This enhancement will help better protect users against malicious polymorphic apps that leverage various methods, such as AI, to be altered to avoid detection." [...] Google is first rolling this feature out in India -- a country that topped the malware distribution charts in that 2018 report -- with the company saying the feature "will expand to all regions in the coming months."
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
All too many times play protect falsely identifies user enabling software falsely as malware. Windows defender has a similar dysfunction.
Indeed they'll probably block most side loaded apps forcing publishers to use the app store. Pretty silly to side load install apps you don't trust anyway, even the ones from the app store. I currently have zero third party apps on my phone. I just use a web browser. I provide one side loaded app to users although although currently moving this to web based. Web based on cell phones has been able to take picture integrated to the web page for a while now and that's all we need.
Re: (Score:2)
Indeed they'll probably block most side loaded apps forcing publishers to use the app store.
The app I sideload on Android devices is SmartTube Next. That can't be in the Play Store for obvious reasons. It's most important on televisions, not phones, but it's useful on both.
Re: (Score:2)
I've sideloaded an app on an old Android device because the version in the play store only supported Android 10+. There are several sites that offer old versions of apps for download, I just wish I had some reliable way of knowing which ones can be trusted (if any).
I've also sideloaded an app that was only available in the US play store, for no good reason I could fathom.
Re: (Score:2)
All too many times play protect falsely identifies user enabling software falsely as malware.
I guarantee that will be the case. I have an Android App that I like to install on my phones even though it was removed from the Google Store years ago due to copyright issues. Recently, when I went to download the apk from my Google mail account, Google flagged the attachment as a virus and refused to allow me to download it. That experience leads me to assume that taken down apps are already flagged as viruses by Google and will likely be treated that way by all of their antiviral tools.
Adblocker is a virus, says ad company (Score:4, Insightful)
How long until they remove the option to install software anyways?
Re: (Score:2)
Well, we just keep whining ad nauseam, such a thing can't possibly happen.
Re: (Score:2)
Another idiot Apple Fanboi defending his fractured mental bias.
Says the Coward without a shred of evidence. The sad reality for you is:
1) I hate Apple devices, and one of the reasons why is because they are locked down.
2) The idiot masses far out number those who want privacy and control over their devices.
Re: (Score:3)
I'd figure pirated/cracked apps would be the next things that get flagged as malicious since that's a big developer complaint. Can't have people getting free gems/coins/gold and bypassing cooldown timers in your shitty freemium "match 3" and "tap and wait" games, now can we?
Re: (Score:2)
I would be extremely surprised if most cracked mobile apps didn't contain malware. I sure as hell wouldn't trust some random apk from some random apk warez site to be what it claims to be.
Re: (Score:2)
Re: (Score:2)
But a good number of cracks are also wrapped with malware too. It's a perfect injection vector.
If you manage to get the cracks "clean" it's one thing, but the vast majority you
Re: (Score:2)
I bet they're also flagged because they're doing shady shit, not just modifying an exe but also phoning home, using crypto, putting files in places nobody should be putting files etc. I personally wouldn't ever use a crack unless it was sandboxed or running in a way that limits its harm, e.g. running in WINE or a VM.
Re: (Score:3)
Probably never, because Google has already got enough antitrust problems.
How DARE you (Score:2, Funny)
Re:How DARE you (Score:5, Insightful)
I DEMAND the right to blindly give away control of my device to a criminal organization that will monitor me for months and then I wake up one morning with empty bank accounts.
Not to worry! You still have access to the Play Store.
Re: (Score:2)
Re: (Score:1)
Re: (Score:3)
I think the point of a "silicone-filled bag" is to imitate breast-tissue. Otherwise, in what way is "silicone-filled bag" like real breast-tissue?
Going from (Euro/US) AA cup to a B cup is the easiest way to feel normal. No amount of therapy is going to make anyone believe that being physically below-average is not a handicap. How serious that handicap is, is another matter. The obvious purpose of breasts, producing milk, may not be impacted. The real purpose of breasts, revealing she is not an 11 year-
Re: (Score:2)
Re: (Score:2)
Yes, the common breast augmentation is making average-size breasts into above average but for a few unlucky women, augmentation is a practical answer.
It's certainly more feasible for a woman to get fake tits than to get over the idea that she needs to have obvious breasts to be happy. Once she gets her breasts enlarged she can go from being abused by men for not having bigger boobs to being abused by men attracted by her boobs, and be unhappy for a completely different reason.
IMO the greyest area is women who lost one breast, e.g. to cancer. I would never suggest anyone doesn't have the right to modify their body for whatever purposes they feel are adequ
Re: (Score:2)
Disable google play protect (Score:2)
It's sad, but I had to disable google play protect exactly for this kind of things. There is no 'I am sure I want to install this even if you detect it as malware', so you have to completely disable play protect or be unable to install some apps you might need.
Re:Disable google play protect (Score:4, Interesting)
I disabled it and then it re-enabled itself, possibly during a security update.
Guess my next Android phone will be one with bootloader unlocking so I can disable Google's malware.
RIP Familiar Linux, would have liked to run that on a phone today.
Re: (Score:3)
Re: (Score:2)
I used a deGoogled OS (CalyxOS) so I don't have to jump through Google's hoops.
Google push to stop ad and tracking blocking (Score:3)
Good for security (Score:3)
But the Google Play store keeps serving up malware (Score:1)
Google serving malware in their own app store:
https://www.bleepingcomputer.c... [bleepingcomputer.com]
Google ads serving malware.
https://www.cshub.com/malware/... [cshub.com]
Google's video platform serving malware.
https://cybersecuritynews.com/... [cybersecuritynews.com]
Simply put, Google is a malware distributor. They have demonstrated time and time again that the
Re: (Score:2)
Simply put, Google is a malware distributor. They have demonstrated time and time again that their marketing environment is not secure. Google is a fraud machine that benefits no one other than it's shareholders.
https://www.darkreading.com/at... [darkreading.com]
https://lifehacker.com/great-n... [lifehacker.com]
https://www.jamf.com/blog/ios-... [jamf.com]
https://www.reddit.com/r/apple... [reddit.com]
It's reasonable to push back against Google's claims that they will protect users from malware, just keep in mind that it's basically impossible. Software is too complex to be proven, it can only be tested, and the analysis can only be as good as the testing at best.
My phone, my choice (Score:1)
API level targeting policy (Score:2)
"Starting from 1 Nov 2022, apps that don't target an API level within two years of the latest Android release won't be available to new users with devices running Android versions newer than your app's target API level. This means that new users won't be able to discover or install your app on Google Play."
This means for example, that users of devices which have upgraded to Android 13 can't find older apps which they want/need in the Play store.
If you do follow a link to an old app Play store will gleeful