Skip to main content

Google wants to rid the Play Store of bad apps

(Image credit: Shutterstock.com)

Google has launched a major security push to better protect the Play Store from malware and malicious apps. 

The search giant has annopunced it will be partnering with three security firms to launch a new project called the App Defense Alliance.

According to Google, the goal of the new project is to unify malware and threat detection engines to improve the security scans that Android apps must undergo before they are published on the Play Store.

Currently when a developer submits an Android app to be listed on the Play Store, the app is scanned by Google employees using a system called Bouncer and by Google Play Protect. Both of these systems have been able to detect thousands of malicious Android apps which were submitted to the Play Store.

However, neither of these systems are perfect and over the years, many malicious apps have managed to slip through their screening process which has left unsuspecting consumers vulnerable as they trust that the apps on the Play Store are legitimate.

Bypassing Play Store security

Over the past few years, the cybercriminals behind Android malware have changed their tactics in an effort to avoid being detected by Bouncer and Play Protect scans.

Malicious apps have begun to employ a multi-stage delivery system, where an app's malicious payload is downloaded after being installed, to reach more users on the Google Play Store. 

Another method used to avoid detection, which has been observed in the wild, revolves around using a timer to delay any malicious behavior by hours or days. This way the malware won't be detected while it is undergoing security testing at Google.

With the App Defense Alliance, Google will now have additional resources in its fight against malicious apps making their way onto the Play Store, with ESET, Lookout and Zimperium adding their expertise.

VP of Android security and privacy, Dave Kleidermacher explained how the company will leverage ESET, Lookout and Zimperium's scanning engines to identify malicious apps in a blog post, saying:

“As part of this Alliance, we are integrating our Google Play Protect detection systems with each partner’s scanning engines. This will generate new app risk intelligence as apps are being queued to publish. Partners will analyze that dataset and act as another, vital set of eyes prior to an app going live on the Play Store.”

Via ZDNet