This site may earn affiliate commissions from the links on this page. Terms of use.

smiling android

Android offers a more open and customizable experience than Apple'due south comparatively locked down iOS platform. Even so, that also means Android users could encounter more malware threats in the wild. The fundamental give-and-take in that location is "could." Many of the Android malware stories we see making the rounds terminate up amounting to nothing because of the way the platform operates these days. While Android malware is definitely out there, you lot don't e'er demand to panic. Allow'south take a look at the anatomy of an Android malware scare to come across when panic is warranted.

Installation

The first thing yous need to know well-nigh Android malware is that you most likely can't just magically go infected from visiting the incorrect website. Apps on Android need to be installed by the user, and several steps must be completed before you can install annihilation from outside Google's Play Store. Even when you practise enable the "unknown sources" characteristic of Android, you need to tap to authorize each app installation manually.

The Play Store is the only service that can install an app in the groundwork, and even and so you lot demand to verify your identity before it allows y'all to push app installations downwards to a phone. In the overwhelming majority of malware cases, people are being tricked into "sideloading" apps from outside the Play Store. It's simply an example of social engineering. Someone may land on a page that says, "Hey, you need this plug-in to view the content." They install the APK, and they're infected.

If you tin avoid installing APKs from emails or random web pages, you lot're already safety from near of the malware you hear virtually.

The Source of Infection

Non all Android devices are created equal. There are many millions (perhaps even billions) of Android phones in Asia that don't connect to Google'southward servers. Since the search behemothic pulled out of Red china virtually a decade ago, Android users at that place take been left to rely on third-party app stores. The makers of their phones often run these, but at that place are plenty of sketchy underground sites peddling APKs besides. And and so there'southward Russia, which has a thriving tertiary-party app store scene that focuses on apps with Russian localization.

These app stores are the "wild west" of app distribution. At that place's plenty of safe content in that location, simply some of information technology is also harboring malware. There'due south no one overseeing things to go on malware in bank check, so most bad apps show up there first. Consequently, many of the infections are concentrated in Asia. If you lot're not installing apps from these marketplaces, you're probably condom.

In the west, malware is most likely to appear in "warez" or pirated app repositories. The nature of the content means there'due south little or no vetting of the files. Then, you might remember y'all're getting Clash of Clans with a bunch of cheats installed, but you're really getting a virus. Again, if yous're not installing these apps, your risk of infection goes way downward.

For anyone with an Android telephone powered past Google (which is nearly every Android user reading this), your phone has malware scanning congenital in. Google deployed the Play Protect organisation several years agone (at the time it was simply called Verify Apps). This service continually scans the apps on your phone to watch for malicious behavior. If it detects something, you lot can take action to remove it. In the result of a alienation of Google'due south Play Store, the visitor tin remotely kill malware on all continued devices.

Yes, malware does occasionally sideslip past Google's filters and finish upwardly on devices. These apps are normally only downloaded a scattering of times before Google catches on, but there have been some larger-calibration infections. This is something to watch for in malware announcements — did the discoverers observe it in the Play Store and had users installed it? The odds of infecting your phone with a virus from the Play Store is still incredibly low.

When It'south Just an App

Let's say you do stop up with malware on your Android phone. What's going to happen? The most common form of malware is going to cram your phone full of ads. Google has increasingly clamped down on what developers tin exercise with regard to advertising, but malware tin throw up full-screen ads or send scammy push notifications. This is an annoyance, only it'southward not necessarily a security threat.

Making money from ads is nice, simply your personal data might be worth more. That's why a lot of malware will try to disguise its presence and spy on y'all. These are still simply apps on your telephone, so you lot need to grant them access to features like business relationship data and location. Over again, this takes some clever social technology on the function of the malware author.

Other bad apps volition try to impersonate a legitimate app to gather personal details entered by users. We saw this recently with a false Uber app. You might not notice there'south malware agile, simply when you practice it can be uninstalled like any other app.

Quondam and New Vulnerabilities

Every software platform in the globe has bugs, and Android is no dissimilar. Its open source nature and reliance on the Linux kernel basically assures that all major Android bugs will get a lot of attention too. When there's a new severe vulnerability in Android (like Stagefright), that's when y'all demand to starting time worrying. In that consequence, much of what we talked most above no longer applies.

With the correct vulnerability, an attacker could theoretically gain straight command over your device to install malware, or only bypass the security measures that are supposed to prevent background installations. Malware that targets an unpatched vulnerability can also human activity every bit more than than "merely an app" by gaining root access to your device.

root

Are you lot sufficiently freaked out? There'southward good news. Serious vulnerabilities are more rare than they in one case were, and the ones we do hear about are disclosed in a responsible fashion. Security researchers detect the flaws and Google issues patches before anyone tries to use the vulnerability in the wild.

Some dangerous hacks in the past have prompted Google to ensure that Android lists the security patch level in the system settings. You tin always cheque that to come across if you've got the most recent security update on your telephone. Unfortunately, not all Android OEMs are skilful near pushing security updates. In the event of a major exploit, you'll want to keep an center on your device'south update timeline.

Some Android users want root access for tinkering, but this is besides a security consequence. A lot of malware tries to root phones upon installation, simply it almost always fails. That's considering app-based root exploits are basically unheard of at this point. It's been years since someone has found such a vulnerability, and without root, in that location's only and then much malware tin do. You'll sometimes hear about malware that includes Towelroot or PingPongRoot. If you run across these listed equally a new malware's vector of assail, yous don't demand to worry. Android has been patched confronting them for years. If anyone does find a new version of these exploits, that would be something to worry almost.

Don't Panic (Ordinarily)

The next time there's an Android malware scare, look at the facts earlier you panic. Is it but being distributed via shady Chinese app stores? Practise you need to be tricked into installing it manually? If y'all were to grab information technology, is information technology just going to show y'all ads until you uninstall it? If the malware is using Android vulnerabilities to corrupt phones, are they ancient exploits like PingPongRoot?

The existent threat is a new major exploit for Android, which is increasingly rare. If something like that happens, you should encounter if your device is already patched. If it's an in-the-wild assault, that's when y'all need to worry. Be vigilant, and you'll be fine.

At present read: 25 Android Tips to Brand Your Phone More Useful