Google Expands Android Theft Protection With Stronger Authentication and Identity Check
Google announced updated Android Theft Protection capabilities aimed at reducing account takeover and financial fraud risks following device theft, with availability starting on devices running Android 16+. The updates strengthen authentication safeguards by making screen lock guessing harder (longer lockout periods after repeated failed PIN/pattern/password attempts) and by improving controls around lock behavior after excessive failed authentications, including a dedicated settings toggle for Failed Authentication Lock.
Google also expanded Identity Check—which requires biometric authentication for sensitive actions when the device is outside trusted places—to cover a broader set of actions and apps that use the Android Biometric Prompt, including third-party banking apps and Google Password Manager. In parallel, Android’s Remote Lock capabilities were highlighted as part of the theft-response toolset, giving users more control to lock a lost or stolen device and limit further misuse.
Sources
5 more from sources like help net security, security online info, zdnet zero day and google security blog
Related Stories
Google Introduces Trusted Contacts for Gmail Account Recovery
Google has launched a new security feature for Gmail and Google accounts that allows users to designate trusted friends or family members as recovery contacts. This feature is designed to help users regain access to their accounts if they are locked out, for example, due to forgotten passwords, lost passkey devices, or account compromise. Users can select up to 10 trusted contacts, who must accept the request to serve in this role. When a user is locked out, they can initiate the recovery process, which involves sharing a code with their chosen contact. The contact receives a notification and must verify the request by selecting the correct code from a set of options, ensuring that only genuine requests are honored. This process uses number-matching authentication to reduce the risk of social engineering attacks. Google recommends that users choose contacts who are likely to respond quickly, as the recovery request expires after 15 minutes. The company also advises selecting individuals with strong cybersecurity awareness to minimize the risk of exploitation by attackers. The trusted contacts feature is part of Google’s broader push towards passkeys as the future of account authentication, addressing the challenge of device loss that can leave users unable to access their accounts. The recovery process is designed to be secure, with the contact unable to access the user’s account directly, but able to verify the user’s identity. Google Messages will also alert users to spam and help keep texts private, further enhancing account security. The setup process for recovery contacts is straightforward and can be completed on both desktop and mobile devices via the Google account security settings. This new method provides an additional layer of resilience for account recovery, supplementing existing options like email and SMS. The feature aims to reduce the frustration and risk associated with being locked out of critical accounts, especially as more users transition to passwordless authentication. Google’s approach balances convenience with security, leveraging personal trust relationships while maintaining technical safeguards. The company acknowledges that, while unlikely, sophisticated attackers could attempt to exploit the process, so user vigilance remains important. Overall, the trusted contacts feature represents a significant enhancement to Google’s account recovery options, providing users with more reliable and secure ways to regain access to their accounts.
5 months ago
Android Tightens Sideloading With Developer Verification ‘Accountability Layer’
Google is preparing an Android change that adds an **“Accountability Layer”** to sideloaded (third‑party) apps, introducing a higher-friction installation flow intended to make users acknowledge the risks rather than banning sideloading outright. Google’s Matthew Forsythe said advanced users will still be able to proceed via an *Install without verifying* option, while Android’s developer verification requirements are being expanded, including a new account type aimed at students and hobbyists that can distribute apps with limited reach without completing full verification. The move aligns with continued growth in Android malware distributed via sideloaded APKs, which threat researchers report remains a primary infection vector despite protections like **Google Play Protect**. Kaspersky reported preliminary 2025 data showing Android threat detections rising by nearly half, with Q3 detections up **38%** versus Q2 and sharp growth in **trojan banker** activity; attackers commonly deliver malicious APKs through messaging apps (often using deceptive filenames like `party_pics.jpg.apk`) and then propagate further via victims’ contact lists, with search-engine spam and email lures also used to drive installs outside official app stores.
1 months agoRecent Security Features and Best Practices for Consumer Devices and Services
Several recent updates and advisories highlight new security features and best practices for consumer devices and services. *elementaryOS 8.1* introduces Secure Session as the default, enhancing privacy by requiring explicit app permissions and improving support for modern hardware. Android 16 now offers an Advanced Protection mode, which consolidates Google's strongest security and privacy features, blocking sideloading, spam, unsafe links, and insecure networks, though it must be enabled manually. Additionally, enabling Private DNS mode on Android encrypts DNS queries, protecting users from eavesdropping on public networks. For iPhone users, a shortcut can be configured to trigger the device's camera and location sharing via text, providing a rapid recovery option if the phone is lost or stolen. Passwordless authentication is gaining traction, with passkeys allowing users to sign in securely without traditional passwords, reducing phishing risks and simplifying cross-device access. The TSA has also reiterated warnings about the risks of public Wi-Fi and USB charging stations at airports, advising travelers to use VPNs and power-only cables to avoid data theft and malware. For organizations using Google Workspace, the Passwd password manager offers enterprise-grade encryption, zero-knowledge architecture, and compliance features, ensuring secure credential management within the Google ecosystem. These developments reflect a broader industry trend toward stronger, user-friendly security measures and increased awareness of digital hygiene for both individuals and organizations.
2 months ago