Galaxy Store

AppWizard
June 19, 2026
Google's upcoming Android app verification system will begin on September 30, 2026, restricting the installation of apps from unverified developers outside the Google Play ecosystem. Certified Android device users will be unable to install apps from developers lacking Google verification, which requires identity authentication through the Android Developer Console. A list of participating app stores includes Google Play, Samsung Galaxy Store, Xiaomi GetApps, HONOR App Market, OPPO App Market, vivo V-Appstore, and Palm Store by Transsion. A new system component, com.google.android.verifier, will be integrated into certified devices running Android 8 or later. In August, Google will introduce a feature called Advanced Flow, allowing users to install unverified apps through a complex process. A Limited Distribution mode for independent developers will enable app distribution to a maximum of 20 devices without registration fees or document verification. The regulations will initially be implemented in Brazil, Indonesia, Singapore, and Thailand, with plans for a global rollout by 2027.
AppWizard
June 19, 2026
Google, Honor, OPlus, Samsung, Transsion, vivo, and Xiaomi are key players in enhancing app distribution platforms. Google is introducing new APIs to simplify the registration process for developers, including the Android Developer ID Status API and the Android Developer Console API. This month, Google will implement a new system service (com.google.android.verifier) on Android 8 or later devices to restrict the installation of unverified applications, although it will remain inactive until verification is launched in specific regions. In July, new developer APIs will roll out, and testing for "limited distribution" accounts will begin, allowing hobbyists to share apps without fees or ID verification on up to 20 devices. By August, an advanced app verification flow will be globally accessible, allowing users to bypass verification through a complex process. In September, Brazil, Indonesia, Singapore, and Thailand will start verifying app installation status, with plans for expanded developer verification by 2027.
AppWizard
June 17, 2026
Security researchers at Zimperium have identified a new Android banking trojan named “Rokarolla,” which threatens users of over 200 banking and cryptocurrency applications. It is distributed through spoofed websites, third-party app stores, and social media, but has not been found on the Google Play Store or other official Android repositories. Rokarolla requests extensive permissions, particularly concerning Accessibility services, SMS, calls, and notifications. Its capabilities include accessing WhatsApp contacts, capturing keystrokes, recording the screen, blocking incoming calls, and sending screenshots. Zimperium has not specified which geographical areas may be most vulnerable or the estimated number of potential infections. Users are advised to download applications only from official repositories to reduce the risk of encountering this malware.
AppWizard
June 16, 2026
Samsung's Galaxy Store had over 50 applications that unknowingly distributed a hidden Android trojan named MagicAd, which has since been removed. Users who downloaded these apps may still have the malware on their devices, as it establishes persistent background services that remain after the app is uninstalled and hides its icon. Signs of infection include unsolicited ads, battery drain, and unexplained data usage. The malware evades detection by assessing its environment and concealing its core code in encrypted files. Developers rotated the infected apps to maintain persistence and generated revenue through fraudulent ad impressions. Users are advised to run security scans and consider a factory reset if symptoms persist, ensuring to back up important files without including app settings. No app store can guarantee the exclusion of all threats, so users should check ratings and download counts before installing applications.
AppWizard
June 15, 2026
A trojan named Android.MagicAd.1 has been identified as a significant threat to Android users, capable of delivering persistent background advertisements by circumventing built-in defenses. Detected in 2025, it has spread through over 50 infected games and utility applications, infiltrating both dubious download sites and official app stores like the Samsung Galaxy Store and Xiaomi’s GetApps. The malware employs a strategy of rotating applications to evade detection, remaining active on user devices after download. It uses hidden, encrypted components within native code libraries and conducts environment checks to avoid monitoring before launching its payload. Android.MagicAd.1 bypasses Android's restrictions by targeting trusted system applications, utilizing methods that vary by device manufacturer. For example, it uses a delayed system command on Xiaomi and Amazon devices, exploits Android Binder on Vivo devices, and employs a universal fallback method for other brands to gain priority for displaying ads. All identified malicious applications have been removed from official stores, but the campaign highlights the vulnerability of security software.
AppWizard
May 15, 2026
Samsung has begun the rollout of the One UI 9 beta for the Galaxy S26 series, featuring enhanced security measures. Key additions include the Auto Blocker with a security report feature and the reinstatement of USB connection blocking in Maximum restrictions mode. The beta version allows monitoring of "unknown" apps, alerting users to high-risk applications and blocking their execution and installation. Users can access the Manage unknown apps section in Settings to view and uninstall sideloaded applications from non-approved sources. This feature aims to improve user experience and security oversight, with expectations for inclusion in the stable release.
Search