"New App Store Code of Practice Aims to Strengthen Ecosystem Cyber Security"

The UK government has announced plans for a code of practice to strengthen app security across the app market. The new voluntary code aims to better protect users from malicious apps available on app stores such as Google Play and Apple's App Store. The new measures include requiring app developers to implement processes that ensure privacy information is more readily available and allow security experts to report software vulnerabilities. Furthermore, the code will result in the creation of a more robust and transparent app vetting process, the requirement for developers to keep apps up to date, and the ability for users to use apps even if they choose to disable certain functionalities, such as microphone access or location tracking. The UK government stated that as part of the move, it would work closely with developers and operators to implement the code over a nine-month period. This will include working with companies such as Apple, Google, Amazon, Huawei, Microsoft, Sony, and Samsung. The new voluntary rules are a component of the government's National Cyber Strategy, which aims to protect and support the UK's digital technology sector while also strengthening national cyber resilience. The move has been endorsed by the National Cyber Security Centre (NCSC) as a positive step toward creating a more transparent and secure app ecosystem for UK consumers and businesses. In recent months, the proliferation of malicious software on app stores has raised concerns among both consumers and business users. Malwarebytes discovered in November that the Google Play store, for example, featured apps that infected devices with malware and displayed malicious pop-up ads. According to the study, four malicious apps were downloaded over a million times by Android users. This problem has not gone unnoticed by operators. Earlier this year, Android announced new Play Store policies to mitigate security risks and compel developers to update older apps. According to Michael White, technical director and principal architect at Synopsys Software Integrity Group, the new code of practice could address lingering security concerns about small businesses' use of open-source software. This article continues to discuss the new app store code of practice announced by the UK government.

ITPro reports "New App Store Code of Practice Aims to Strengthen Ecosystem Cyber Security"