Android’s New Feature Prevents Fraudsters from Sideloading Apps While on the Phone
Android’s New Feature Prevents Fraudsters from Sideloading Apps While on the Phone
Google is developing a new Android security feature that prevents device owners from altering private settings while a phone call is being processed.
The in-call anti-scammer safeguards specifically involve giving accessibility access and prohibiting users from enabling settings to install apps from unidentified sources. Android Authority was the first to report on the development.
The following notice is displayed to users who try to do so during phone conversations: “This kind of action is frequently requested by scammers during phone conversations, so it’s blocked to protect you.” It could be a fraud if someone you don’t know is advising you to do this.”
Additionally, it prevents users from granting accessibility capabilities to an app while on the phone.
Android 16 Beta 2, which was made available earlier this week, now has the capability. The goal of this most recent modification is to create extra friction to a technique that criminal actors have frequently exploited to spread malware.
These methods, known as telephone-oriented attack delivery (TOAD), entail sending potential targets SMS messages that, by creating a false feeling of urgency, encourage them to call a number.
NCC Group and Finland’s National Cyber Security Centre (NCSC-FI) revealed last year that fraudsters were tricking people into installing malware like Vultr by distributing dropper programs through a combination of phone calls and SMS messages.
The move follows Google’s expansion of restricted settings to include additional permission categories to stop sensitive data from being accessed by sideloaded apps.
Additionally, in order to combat fraud, it has implemented the capability of automatically blocking the sideloading of potentially dangerous apps in markets such as Brazil, Hong Kong, India, Kenya, Nigeria, the Philippines, Singapore, South Africa, Thailand, and Vietnam.
About The Author:
Yogesh Naager is a content marketer who specializes in the cybersecurity and B2B space. Besides writing for the News4Hackers blogs, he also writes for brands including Craw Security, Bytecode Security, and NASSCOM.
READ MORE ARTICLE HERE
Microsoft Patches A “Wormable” Windows Bug and A Zero-Day Attack that Deletes Files
Apple iPhones and MacBooks Product Consumers are more vulnerable to hacking, Reports CERT-In
About Author
English