The latest update to the Android Emulator in Android Studio allows multiple instances to coexist on the same virtual Wi-Fi network and interconnect using standard Wi-Fi-based protocols.
Version 5.2.1 of the EngageSDK was released to address security vulnerabilities related to third-party SDKs, particularly affecting digital asset management applications. Although no exploitation of this vulnerability has been reported, developers are urged to upgrade to the latest version. The Android operating system's security model provides some protections against these vulnerabilities, and the Android team has updated user protections during the transition to the secure version. The vulnerability, classified as severe, allows unauthorized access to protected components and sensitive data through intent redirection. Affected applications, particularly in the cryptocurrency and digital wallet sectors, account for over 30 million installations. The vulnerability was first identified in version 4.5.4 of the EngageLab SDK, reported in April 2025, and was addressed in version 5.2.1 released on November 3, 2025, which set the vulnerable activity to non-exported. Developers are advised to regularly review their Android manifests and upgrade to the latest SDK version to maintain application security.
Google is transforming the Android operating system to enhance security by imposing stricter regulations on app distribution, particularly affecting sideloading. Developers will be categorized as verified or unverified, with registered developers benefiting from a streamlined app distribution process. New regulations will introduce a four-step process for installing apps from external sources, including a 24-hour timer before installation. This aims to deter fraud but may discourage users from pursuing alternative apps. The restrictions could limit opportunities for independent developers and reduce the diversity of available applications on the platform, shifting Android towards a more controlled environment.
Modern vehicles are becoming Software-Defined Vehicles (SDVs), where software enhances functionalities such as pre-heating and smartphone unlocking. This shift allows manufacturers to introduce new features through over-the-air updates. However, the transition faces challenges due to diverse software architectures among manufacturers, requiring significant investment in infrastructure. Android promotes open platforms, exemplified by Android Automotive OS (AAOS), which enables carmakers to create infotainment experiences while reducing costs and time to market. AAOS is being extended to AAOS SDV, providing an open infrastructure for non-safety vehicle components, allowing manufacturers to focus on unique customer experiences. Collaboration with companies like Renault Group and Qualcomm is ongoing, with plans to make AAOS SDV open-source later this year.
Starting September 2026, Google will regulate the sideloading of apps through APK files on certified Android devices. Users will need to pay a fee, agree to terms and conditions, provide government identification, upload evidence of the developer's private signing key, and list all application identifiers. There are three methods for sideloading:
1. Sideloading from verified developers, requiring a verification process.
2. Sideloading from developers with limited distribution accounts, allowing sharing with up to 20 devices without ID or fees.
3. Sideloading from unverified developers, which involves enabling developer mode, confirming the user is not being scammed, restarting the phone, waiting 24 hours, and confirming identity through biometric authentication or device PIN.
These changes aim to enhance security and reduce scams while still allowing some flexibility for developers.
Developers distributing apps outside of Google's Play Store will be required to register with Google in certain countries starting in September, with plans for global expansion by 2027. This policy aims to enhance security by removing anonymity from developers but comes with a registration fee and the need for government identification. F-Droid, an open-source app repository, has raised concerns that this policy could threaten its existence by mandating a single signature for all apps. F-Droid initiated a public campaign against these changes, garnering support from various organizations. Despite some interest from regulators, progress is slow, and there are fears that Google's verification program may be implemented before any regulatory action occurs. F-Droid encourages developers to avoid signing up for the early access program and has launched a petition to voice concerns.
Google is testing various AI models for Android app development through a new platform called “Android Bench,” which evaluates the performance of leading AI language models (LLMs) against benchmarks specific to Android development. The benchmarks assess capabilities in areas such as Jetpack Compose, asynchronous programming, data persistence, dependency injection, navigation migrations, Gradle/build configurations, and interaction with Android components. Google has identified Gemini 3.1 Pro Preview as the top-performing model with a score of 72.4%, followed by Claude Opus 4.6 at 66.6% and OpenAI’s GPT 5.2 Codex at 62.5%. Gemini 2.5 Flash scored the lowest at 16.1%.
Google plans to change its app fee structure and introduce a new program for third-party app stores as part of its legal battle with Epic Games. The revised fee structure will separate service fees from Google Play billing fees, reducing service fees for in-app subscriptions from 15% to 10%, while a 5% fee will apply for those using Google Play billing. A new Registered App Store program will allow third-party app stores that meet certain criteria to register with Android, improving user installation experiences. These changes are expected to take effect in the US, UK, and Europe by the end of June 2024, with a global rollout by September 30, 2027. The Registered App Store program will initially launch outside the US and will be included in a major Android release later this year, pending court approval for domestic implementation.
Google and Epic Games have resolved their dispute, leading to significant changes in Google's Android platform. These changes include better support for third-party app stores, the option for developers to use their own billing systems alongside Google Play billing, and adjustments to Google Play fees.
Google's annual review highlighted its security measures for Android and Google Play, reporting that in 2025, it prevented over 1.75 million policy-violating apps from being published and banned more than 80,000 developer accounts. Google Play conducted over 10,000 safety checks on every app, blocked 160 million spam ratings, and Google Play Protect scanned over 350 billion Android apps daily. New fraud protection features were introduced, blocking 266 million risky installations and protecting users from 872,000 high-risk applications. Developer tools were enhanced with Play Policy Insights and expanded pre-review checks, while the Play Integrity API conducted over 20 billion checks daily. Google plans to invest further in AI-driven defenses and implement developer verifications in 2026.
