Thursday , 22 February 2018
Home >> L >> Linux >> How Google fights Android malware

How Google fights Android malware

Video: Five tip improvements in Google Android 8.1

If we usually review a headlines, it sounds like Android is a confidence mess. There’s a news about one Android malware program after another. What’s not pronounced is that mostly these Android viruses need a user to be a sucker to get them. But given a fool is innate each minute, Google does a best to stop malware in a tracks.

How does Google do this? Google’s VP and control of security, Dave Kleidermacher, and Google Play’s product manager, Andrew Ahn, explained in a blog post: “While a infancy of developers have their audience’s best seductiveness during heart, some bad apps and antagonistic developers do try to hedge showing and enter a Play Store to put people and their inclination in harm’s way.”

Read also: This Android malware mimics Uber to take your login and password

A vital reason for this is a “massive scale and a tellurian strech of Google Play make a height a aim for bad actors,” according to Google. To fight them, Google pronounced it deploys “teams of engineers, process experts, product managers, and operations professionals who constantly guard a store and incorporate feedback from a user village to strengthen people from misleading, inappropriate, or damaging apps.”

So, what does that mean? In 2017, Google reported it “took down some-more than 700,000 apps that disregarded a Google Play policies, 70 percent some-more than a apps taken down in 2016. Not usually did we mislay some-more bad apps, we were means to brand and movement opposite them earlier. In fact, 99 percent of apps with violent essence were identified and deserted before anyone could implement them.”

Google claimed it was means to do this “through poignant improvements in a ability to detect violent app calm and behaviors — such as impersonation, inapt content, or malware — by new appurtenance training models and techniques.” In addition, “We’ve also grown new showing models and techniques that can brand repeat offenders and violent developer networks during scale. This resulted in holding down of 100,000 bad developers in 2017, and done it some-more formidable for bad actors to emanate new accounts and try to tell nonetheless another set of bad apps.”

In other words, Google done it many harder for repeat offenders to pull malware into a Play Store. Specifically, Google strengthened Android Play Store in a following areas:

Read also: This crypto-mining Android malware is so perfectionist it detonate a smartphone

Copycats

Attempting to mistreat users by impersonating famous apps is one of a many common violations. Famous titles get a lot of hunt trade for sold keywords, so a bad actors try to assemble installs leveraging such traffic. They do this by perplexing to hide in impersonating apps to a Play Store by false methods such as regulating confusable unicode characters or stealing impersonating app icons in a opposite locale. In 2017, Google took down some-more than a entertain of a million of impersonating apps.

Read also: Android security: Sneaky three-stage malware found in Google Play store

Inappropriate content

Google doesn’t concede apps that enclose or foster inapt content, such as pornography, impassioned violence, hate, and bootleg activities. The softened machine-learning models differentiate by large amounts of incoming app submissions and dwindle them for intensity violations. This helps a tellurian reviewers in effectively detecting and enforcing on a cryptic apps. Tens of thousands of apps with inapt calm were taken down final year as a outcome of such softened showing methods.

Read also: BankBot Android malware sneaks into a Google Play Store – for a third time

Potentially Harmful Applications (PHAs)

PHAs are a form of malware that can mistreat people or their inclination — e.g., apps that control SMS fraud, act as trojans, or phishing user’s information. While tiny in volume, PHAs poise a hazard to Android users and Google invested heavily in gripping them out of a Play Store. Finding these bad apps is non-trivial as a antagonistic developers go a additional mile to make their app demeanour as legitimate as possible. With a launch of Google Play Protect in 2017, Google reduced a rate of PHA installs by an sequence of bulk compared to 2016.

Google Play Protect took several confidence measures that were already benefaction in Android and softened them. These are malware scanning, focus monitoring for brute behavior, a ability to remotely locate, lock, and optionally clean your device, and warnings about dodgy sites, that try to feed we malware or pretence we out of personal information.

When it fails, and it will destroy sometimes, Google’s executive of Android security, Adrian Ludwig, explained to ComputerWorld‘s J.R. Raphael: “The plea that all showing record runs into, thorough of Google Play Protect, is when we see a completely new family entrance from a opposite environment — generally if [the apps] are on a equivocal of function that competence be deliberate to be potentially damaging and not utterly potentially harmful.” For example, no one’s been means to use a Meltdown and Spectre confidence holes in malware… yet. When it does happen, these attacks will be tough to detect.

Still, Google’s Play Store insurance isn’t perfect. “Despite a new and extended showing capabilities that led to a record-high takedowns of bad apps and antagonistic developers, we know a few still conduct to hedge and pretence a layers of defense. We take these intensely seriously, and will continue to innovate a capabilities to improved detect and strengthen opposite violent apps and a antagonistic actors behind them. We are committed to make Google Play a many devoted and protected app store in a world,” Kleidermacher and Ahn wrote.

So, is Android ideally secure from antagonistic programs? Heck no! The conflict opposite malware is everlasting and bad programs will make it by sometimes. But, Google is perplexing a best to make Android and a applications as protected as possible.

Related stories

close
==[ Click Here 1X ] [ Close ]==