An adware campaign involving over 60,000 Android apps has infected devices since October 2022. Researchers warned that the infected Android apps could start distributing potent malware, including credential stealers, banking trojans, and ransomware.
Popular mini-game module found in over 100 Android apps, pitched to developers as a legitimate marketing SDK meant to improve user engagement and attention, has been found to have spyware capability hidden in it.
Starting in 2024, Android apps that want to be listed on the Google Play Store will need to provide users with greater control over the data they collect. Apps must allow users to delete their account data whenever they choose, and to entirely remove their account from the app.
Study has harsh criticism for the data safety labels that ostensibly inform consumers about the data sharing habits of Android apps. Almost 80% of sampled apps either did not match up with statements made in the privacy policy or were worded in a misleading way.
Information displayed is very similar to what is seen on Apple's privacy labels, but it remains to be seen if Google Play effectively enforces the inclusion of accurate information about Android apps.
Lookout security researchers discovered over 170 Android apps, 25 on Google Play, that have defrauded more than 93,000 users about $350,000 through crypto mining scams.
Several Android apps using misconfigured cloud services for storage, real-time communication and synchronization exposed sensitive information of over 100 million smartphone users.
As with Apple's new program, the proposed privacy labels are meant to give end users a quick reference to the range of data that Android apps are asking for.