If live threat detection spots something suspicious, the app is sent to Google for review and users will be warned. If this review confirms that the app is malicious, Google will then disable the app. Interestingly, the testing done to look for suspicious behavior is conducted on-device using a system that preserves users’ privacy. This is done via the use of Google’s Private Computer Core which allows Google to “protect users without collecting data.” This is a cloud-based service that uses cryptography to enable secure and private computations of sensitive data.
Before the end of the year, Google’s live threat detection will be found in Android handsets made by Google Pixel, Honor, Lenovo, Nothing, OnePlus, Oppo, Sharp, Transsion, and other manufacturers. This feature should cut down on the abuse of permissions by attackers looking to steal personal data from device owners by getting permission to use a phone’s microphone, camera, and more to complete that task.
Permission prompt received by Android user when an app requests a dangerous permission. | Image credit-Google
- Post Notifications
- Write external storage
- Read external storage
- Camera and Record Audio (tie)
- Read media images