.jpg?ssl=1 "Google to verify all Android Devs to block malware on Google Play")
.jpg "Google to verify all Android Devs to block malware on Google Play")
Google is starting a new rescue for Android called ‘Developer Verification’ to block malware installation from sidded apps obtained from outside the official Google Play App Store.
For apps on Google Play, there was already a need for publishers to provide Duns (data universal numbering system) number offered on 31 August, 2023.
Google says that it has a remarkable effect in reducing malware on the platform. However, the vast developer outside the system app store was not applicable to ecosystem.
“We have seen how malicious actors hide behind oblivion to damage users using their brand image to replicate developers and create fake apps” Google’s announcement reads,
“The scale of this danger is important: our recent analysis found 50 times more malware than internet-signed sources compared to the apps available through Google Play.”
Although this danger is more prevalent outside the Google Play, the developer verification requirement applies to both apps on Google Play and the app hosted on the third-party app store.
Starting in 2026, all apps installed on certified Android devices should come from developers who have verified their identity with Google.
The initial access to the developer verification program will begin in October this year, and the system will open to all Android app in March 2026 for developers.
In September 2026, before rolling globally in 2027, the need for identity verification will be mandatory for Brazil, Indonesia, Singapore and Thailand.
In the expected effect, sidoding of non-non-approval app is to be blocked by the operating system with a safety message on the certified device.
Certified Android devices are those who have passed the CTS of Google and are approved to ship with Google Play Services, Play Store, and Play Protect.
In practice, it covers all mainstream equipment from Samsung, Xiaomi, Motorola, OnePlus, Oppo, Vivo and Google Pixel line.
Non-certified devices are from Huawei, Amazon Fire Tablets, and Shady Chinese TV boxes or smartphones that use heavy modified OS images and suspicious components.
Those devices are not subject to new rules enforcement, and their users will be able to continue to load APK from non -developed and unnamed developers.
The passwords broke in 46% of the atmosphere, almost doubled by 25% last year.
Picus Blue Report 2025 Now get a wider look at more conclusions on prevention, detection and data exfIs.
