installing apps Archives

AppWizard

February 19, 2026

Android security gets aggressive as Google bans thousands of developers and millions of sketchy apps

Google has reported significant improvements in app security for Android in 2025, preventing over 1.75 million policy-violating apps from entering the Play Store and removing more than 80,000 developer accounts attempting to distribute malware. The integration of AI models into the app review process has enhanced the speed and accuracy of identifying malicious patterns. Additionally, Google blocked over 255,000 apps from requesting unnecessary sensitive data and eliminated 160 million spam ratings and reviews. Google Play Protect now evaluates over 350 billion apps daily, identifying 27 million new malicious apps outside the Play Store and blocking 266 million risky installation attempts across 185 markets. A new measure has been implemented to prevent users from disabling Play Protect during phone calls to combat social engineering tactics. Future plans include democratizing developer verification and simplifying protection against "tapjacking" attacks in Android 16.

AppWizard

February 19, 2026

PromptSpy Android Malware Abuses Google Gemini to Automate Recent-Apps Persistence

Cybersecurity researchers have identified a new Android malware named PromptSpy that utilizes Google's Gemini AI chatbot to enhance its capabilities and persistence on infected devices. PromptSpy can capture lockscreen data, obstruct uninstallation, gather device information, take screenshots, and record screen activity. It integrates Gemini to analyze the current screen and provide instructions to keep the malware active in the recent apps list. The malware uses a hard-coded AI model and communicates with a command-and-control server via the VNC protocol, allowing remote access to the victim's device. It is financially motivated, targeting users in Argentina, and was developed in a Chinese-speaking environment. PromptSpy is distributed through a dedicated website and is considered an advanced version of a previously unidentified malware called VNCSpy.

AppWizard

January 30, 2026

Google’s New Android Lockdown—Do Not Install These Apps

Google is tightening its policies on sideloading practices, allowing app installations only from verified developers to enhance user security and reduce risks associated with malicious software. The company has removed numerous harmful applications and accounts to combat the exploitation of its ecosystem. Cybercriminals are replicating popular applications like Google, YouTube, and WhatsApp to deceive users into downloading malicious software, which often masquerades as “mod” or “pro” versions. These counterfeit apps can install the Arsink Remote Access Trojan (RAT), which allows hackers to control devices, record audio, harvest personal information, and perform unauthorized actions. The Arsink operation has affected tens of thousands of victims across approximately 143 countries. Users are advised to avoid installing apps from messengers, online forums, or direct links and to use official app stores instead. Google confirms that the RAT is not infecting Play Store apps and encourages users to keep Play Protect enabled.

BetaBeacon

January 28, 2026

Phantom Malware in Android Game Mods Hijacks Phones for Ad Fraud

A malware strain known as Android.Phantom is being distributed through popular titles and unofficial app sources, operating silently alongside games to conduct click fraud. The malware can mimic user behavior, interact with ads through automated clicks, and establish peer-to-peer connections to allow remote controllers to interact with the user's screen in real time. It is recommended to avoid installing apps from third-party stores to reduce the risk of encountering malicious software.

AppWizard

January 19, 2026

Here’s how Google’s getting ready for Android’s upcoming sideloading restrictions

Starting in 2026, Google will require developers to register when releasing apps intended for sideloading on Android. Recent updates to Google Play (version 49.7.20-29) include references to verified installations and options to install without verification. Users will see cautionary messages about the risks of installing apps from unverified developers, indicating that an internet connection may be necessary for developer verification. If connectivity is lacking, users will be informed that the app developer cannot be verified, but they may still proceed with installation. Google's rollout plan for this new system includes Brazil, Indonesia, Singapore, and Thailand, with an anticipated start date in September of this year.

AppWizard

January 17, 2026

Google blocks unverified Android apps, millions affected

Google has initiated a comprehensive overhaul of the Android app installation process, introducing a more stringent verification protocol for sideloaded apps. This change aims to enhance user security by mitigating risks associated with unverified applications that may contain malware or security vulnerabilities. The new verification process is expected to impact millions of Android users globally and will require developers to ensure their applications meet the new standards set by Google. This could lead to changes in app development and distribution practices. Users may need to reconsider their approach to sideloading as the balance between convenience and security becomes increasingly important.

AppWizard

November 23, 2025

Security experts issue urgent malware warning for Android and WhatsApp users

A newly identified vulnerability known as Sturnus poses a significant risk to users of messaging platforms like WhatsApp, Telegram, and Signal on Android devices, potentially affecting millions and leading to severe privacy breaches. This Trojan can grant cybercriminals complete remote control over infected devices, allowing them to surveil user activities, intercept messages, and steal banking information. It can create convincing fake login screens to harvest banking credentials and execute fraudulent actions while obscuring the device's display from the user. Although Sturnus is still in its developmental stage and has not achieved widespread distribution, security experts warn that its potential for harm is significant. To protect against such threats, users are advised to download applications only from the official Google Play Store, avoid unverified sources, review app ratings, verify developers' reputations, and refrain from installing apps accessed through links or social media.

AppWizard

November 13, 2025

Google will soon give Android power users a safer way to sideload apps from unverified developers

Google will block the installation of applications from unverified developers on Android starting next year to enhance user security against malware threats. Users will need to use ADB for sideloading apps, although an "advanced flow" will be developed to allow opt-in installation of unverified apps with explicit warnings about associated risks. Google will also introduce a new account type for students and hobbyists to distribute their applications to a limited audience without standard verification. The company is seeking early feedback on the "advanced flow" design and has invited developers distributing apps outside the Play Store to participate in an early access program for verification, with invitations extending to Play Store developers starting November 25.

AppWizard

November 13, 2025

Breaking: Google is easing up on Android’s new sideloading restrictions!

Google announced plans to implement restrictions next year that will block users from installing apps created by unverified developers, prompting backlash from the Android community. In response, Google introduced an "advanced flow" for experienced users willing to accept risks associated with installing unverified software, which will include clear warnings about the risks involved. Additionally, Google is launching an early access program for developers who distribute apps outside of the Play Store, allowing them to verify their identity before the new requirements take effect. Further details on this feature are expected in the coming months.

AppWizard

November 11, 2025

Android phone users may soon get a ‘battery’ warning before downloading these apps

Android users will soon see a red warning badge on the Google Play Store indicating that an app “may use more battery than expected.” This feature, developed with Samsung, targets apps that misuse “partial wake locks,” which can lead to significant battery drain. The update introduces a metric to monitor “excessive partial wake locks,” flagging apps that maintain over two cumulative hours of non-exempt wake locks in a 24-hour period. If at least 5% of an app’s user sessions exceed this threshold over 28 days, it will be marked as a battery drain culprit. Starting March 1, 2026, such apps will have reduced visibility in the Play Store and will display a red warning label about high background activity and potential battery drain. This initiative aims to improve battery performance and encourage developers to optimize their apps.