Skip to main content

Android users in Singapore to be blocked from installing certain unverified apps as part of anti-scam trial

 

Android users in Singapore to be blocked from installing certain unverified apps as part of anti-scam trial

Listen to this article
4 min
New: You can now listen to articles.

This audio is generated by an AI tool.

Published February 7, 2024
Updated February 7, 2024
WhatsAppTelegramFacebookTwitterEmailLinkedIn

SINGAPORE — Some Android users in Singapore will automatically be blocked from installing apps from unverified sources, with a new security feature that Google plans to progressively roll out in the coming weeks.

It is part of a trial to better protect users against malware scams and was developed in partnership with the Cyber Security Agency of Singapore (CSA).

"Singapore will be the first country to begin a phased pilot of this feature on Android devices in the next few weeks," Google said in a media release, adding that this builds on the existing Google Play Protect malware protection system.

When users try to install an application from unverified app stores, also known as sideloaded apps, Google's latest security feature will automatically block it if it uses sensitive runtime permissions frequently abused for financial fraud.

Runtime permissions give an app additional access to restricted data like SMSes and phone notifications.

READ ALSO

Explainer: Why are Android devices prone to malware and how can users guard against it?

Users will be served an explanation if attempts to download a suspicious app are blocked.

In a previous update of Google Play Protect, users were recommended to conduct a real-time app scan to better detect whether an Android app may be infected with malware. When the scan was completed, users were notified about whether it could be safely installed. 

Mr Eugene Liderman, director of Android security strategy at Google, told CNA the real-time scanning enhancement to Google Play Protect was fully rolled out in Singapore in November 2023.

Since the launch of real-time scanning last October, Google said it has helped identify over 515,000 potentially harmful apps, and blocked or warned users almost 3.1 million times when they attempted to install such apps. 

Scam victims are often directed to download an Android package kit (APK) file through sources such as websites, messaging apps or file managers. 

"Members of the public are advised not to download any suspicious APK files on their devices as they may contain malware which will allow scammers to access and take control of the device remotely as well as to steal passwords stored in the device," the police said in an advisory last July. 

READ ALSO

Android malware scam victims lost over S$10 million in first half of 2023: Police

Sideloaded apps typically ask for permission to read and receive SMSes and notifications, and grant accessibility to devices.

These permissions enable scammers to intercept one-time passwords via SMS or from notifications and spy on screen content, said Google.

The tech giant's newest security feature is designed to look out for such permissions, which are "frequently abused by fraudsters", and block the app's installation.

"Based on our analysis of major fraud malware families that exploit these sensitive runtime permissions, we found that over 95 per cent of installations came from internet-sideloading sources," it added. 

ONGOING FIGHT AGAINST MALWARE SCAMS

Over 750 cases of Android malware-related scams were reported in the first half of 2023, with victims losing more than S$10 million, the police said last September.

Since the launch of real-time scanning last October, Google said it has helped identify over 515,000 potentially harmful apps, and blocked or warned users almost 3.1 million times when they attempted to install such apps. 

Scam victims are often directed to download an Android package kit (APK) file through sources such as websites, messaging apps or file managers. 

"Members of the public are advised not to download any suspicious APK files on their devices as they may contain malware which will allow scammers to access and take control of the device remotely as well as to steal passwords stored in the device," the police said in an advisory last July. 

READ ALSO

Android malware scam victims lost over S$10 million in first half of 2023: Police

Sideloaded apps typically ask for permission to read and receive SMSes and notifications, and grant accessibility to devices.

These permissions enable scammers to intercept one-time passwords via SMS or from notifications and spy on screen content, said Google.

The tech giant's newest security feature is designed to look out for such permissions, which are "frequently abused by fraudsters", and block the app's installation.

"Based on our analysis of major fraud malware families that exploit these sensitive runtime permissions, we found that over 95 per cent of installations came from internet-sideloading sources," it added. 

ONGOING FIGHT AGAINST MALWARE SCAMS

Over 750 cases of Android malware-related scams were reported in the first half of 2023, with victims losing more than S$10 million, the police said last September.

Labels:

Comments

Post a Comment

Popular posts from this blog

Apple In The Hotseat After Reviewer Confirms Its Vision Pro’s Eyesight Feature Doesn’t Work

  For months, we’ve seen tech giant Apple speak about how its Vision Pro entails features that set it far apart from all others in the industry. Now, a reviewer is casting serious doubt on the iPhone maker’s claims after adding that one of the key features of the new Vision Pro Eyesight does not work. And that’s shocking considering how much Apple has marketed the product as one of the best in the industry. When you consider a wide array of real-life examples, you’ll find how Apple has always spoken about this technology being one of the best out there. But in reality, one reviewer says that’s far from the truth. CEO Tim Cook took out the time to argue about how AR is far more superior and entertaining than the world of VR. The former was better as it did not isolate individuals from the community arising around it. Moreover, this is where the entire EyeSight product range came into existence from this notion as it ensured users were well aware and engaged in everything in their su...
Post a Comment
Read more

OpenAI Sets Eyes On New AI Project Worth Trillions As Sam Altman Begins Talks With Potential Investors

  OpenAI has made it very clear that it’s not coming slow in terms of its ambitions for the year 2024. Sam Altman is said to be in talks with leading investors including the UAE government for a massive AI project that’s said to be worth trillions. This would entail the production of AI chips as confirmed by the WSJ in a new report. The CEO has yet to unveil the curtain on what exactly the project is all about and how it’s only in the early stages. Meanwhile, the list of investors taking part in this ordeal is still unknown, the company explained. Sam Altman also held similar discussions regarding the raising of funds for plans such as the production of a new plant with Japan and UAE-based investors such as their leading tech giants which include SoftBank Group and G42. It’s not too shocking as we’ve heard the OpenAI CEO mention time and time again how the world needs more AI chips now than ever. He feels they are designed to better enhance performance and assist in running AI mode...
Post a Comment
Read more

The Arrival Of Gemini 1.5 - Google Unveils Its Latest Iteration Of Its Conversational AI System

  Google just unveiled  Gemini 1.5 , its latest rendition of the conversational AI system. The product is said to entail a greater array of advances in better efficiency, long-form reasoning, and enhanced performance. The latest system was detailed in a post by Google’s AI head that entailed a large figure of architecture enhancements, ensuring the core model can perform on the same level as the big Gemini 1.0 Ultra endeavor, without using extra computing resources. This latter was rolled out in the past week. The biggest leap comes at a time when there’s a huge window for carrying out experiments that the company says have to do with long-form context comprehension. The standard model of Gemini analyzes several prompts within a small 128k token context. With this new upgrade, the model will have a large number of data to process which can now be done quicker than before. This huge leap arose at a time when we saw the firm’s CEO analyze and classify as well as summarize a huge...
Post a Comment
Read more