"Google and CSA Singapore Combat Android Fraud With New Pilot"

Google has recently launched a pilot program aimed at enhancing financial fraud protection for Android users in Singapore.  To address security concerns associated with standalone app distribution sources like web browsers and messaging apps, Google introduced enhanced real-time scanning through Google Play Protect in October 2023.  Google noted that this feature aims to detect and block malicious apps, particularly those downloaded from the internet, thereby enhancing user safety.  Since its deployment in select regions, the real-time scanning has reportedly identified over half a million new malicious apps and issued millions of warnings.  Acknowledging the pervasive threat of financial fraud scams, Google is now collaborating with the Cyber Security Agency of Singapore (CSA) to pilot enhanced fraud protection in the country.  This initiative targets the prevention of mobile financial fraud by automatically blocking the installation of apps that request sensitive runtime permissions commonly abused by fraudsters.  These permissions include RECEIVE_SMS, READ_SMS, BIND_Notifications, and Accessibility, frequently exploited to intercept passwords and spy on on-screen content.  Google encourages developers to review their apps’ permissions and ensure compliance with best practices to mitigate potential impacts from apps targeting the Android ecosystem.

 

Infosecurity Magazine reports: "Google and CSA Singapore Combat Android Fraud With New Pilot"

Submitted by Adam Ekwall on