Google announced some significant changes to its security measures on the Google Play Store. The tech giant also blocked about 2.28 million policy-violating apps from publishing in 2023.
These remarkable achievements in bolstering security were made possible through the deployment of cutting-edge technologies, including advanced machine learning. This innovative approach, coupled with new security features and policy updates, has led to more stringent developer onboarding and review processes, ensuring a safer app environment for users.
In a blog post by the members of Google’s Android Security and Privacy Team and Play Trust and Safety team, the company revealed its new, multifaceted approach to improve security and privacy in the Google Play Store. The new measures resulted in identifying and banning about 3,33,000 flagged accounts that were confirmed to spread malware through apps and were involved in other severe policy violations.
Moreover, nearly 200,000 app submissions were rejected because they asked for permission to access background processes, location data, or SMS. Notably, the banned apps also included several AI-based deepfakes and AI nude generator applications.
To bolster user privacy, Google collaborated with Software Developer Kit (SDK) providers to restrict sensitive data access and sharing, which benefited over 31 SDKs and more than 790,000 apps.
Furthermore, Google introduced new Play Store transparency labeling to highlight VPN apps undergoing an independent security review through ADA’s Mobile App Security Assessment (MASA). This labeling empowers users to make informed decisions about app security and privacy.
Google has also enhanced Google Play Protect’s security capabilities with real-time scanning at the code level. This measure has already detected over 5 million new malicious off-Play apps, further securing Android users globally.
Google also updated its Play Store policies concerning Generative AI apps, disruptive notifications, and expanded privacy protections. Additionally, it raised the bar for new personal developer accounts by implementing rigorous testing requirements before app deployment.
To foster trust and transparency, Google has also introduced expanded developer verification requirements and enhanced user control over personal data. Apps enabling account creation are now mandated to offer an option for initiating account and data deletion within the app and online.
Moreover, approximately 1.5 million applications that do not associate with the latest APIs are no longer available in the Play Store for new users on updated devices, ensuring compatibility and security.