It’s possible that Google is planning to introduce a new feature that will identify malicious apps in addition to taking a stand against phishing on Android.
Finding harmful websites these days is nothing new, especially when it comes to phishing and other similar scams. These kinds of attacks have gotten much more common recently, and they have targeted a large number of innocent people. It is crucial that you verify each app or website thoroughly before logging in or providing important personal data.
However, according to a report by Android Police, it looks like Google may be taking a stand against phishing on Android and getting ready to roll out a new feature that will identify malicious apps.
Journalist and Android specialist Mishaal Rahman discovered a “scanning for deceptive apps” page in the most recent Android 14 QPR2 Beta 2 under Settings > Security and Privacy > Additional security and privacy. As soon as you activate this function, Android is said to monitor apps for “phishing and deceptive behavior,” according to the report. App data is shared with Google Play Protect if something is discovered in order to verify the threat and alert users.
The report continues by saying that since there isn’t any official literature for this function yet, it’s unclear how Android accomplishes this. But according to the Android 14 QPR2 Beta 2 source code, a new system service called “Content protection” may be looking for strings similar to “password,” which is a frequent password. Additionally, it’s said that things like whether a program is a system app or requires internet access are examined.
When or whether this feature is formally included to an Android public build is still to be determined. To avoid installing such apps in the first place, it is crucial to follow appropriate digital hygiene procedures. Avoid downloading random APK files from the internet to sideload them as a general rule. Hackers frequently take advantage of people looking to download premium software for free. Additionally, to differentiate between authentic and fraudulent websites, always double-check domain names.