Google's data charts path to avoiding malware on Android
Source: Vistar Communications for ESET Middle East , Author: Tomas Foltyn
Posted: Thu November 22, 2018 1:48 pm

UAE. You need to stick to Google Play for apps and run as recent a version of Android as possible if you want to lower your risk of ending up in the crosshairs of malware-touting miscreants, according to the findings in a report from none other than Google.

While you were unlikely to fall off your chair at reading this, it’s still worth examining the underlying data, as available in the company’s all-new Android Ecosystem Security Transparency Report.

Google says that 0.09% of Android-powered devices that installed apps only from the official app repository in 2017 were compromised with at least one Potentially Harmful Application (PHA), which is Google’s term for mobile malware.

This share dropped further, to 0.08%, in the first three quarters of 2018. With Android’s 2-billion user base, this still amounts to 1.6 million devices.

At any rate, the devices that installed apps from outside the official Android storefront were far more likely to “contract” a PHA – 0.82% in 2017 and 0.68% in the first nine months of 2018.

“Android devices that only download apps from Google Play are 9 times less likely to get a PHA than devices that download apps from other sources,” reads Google’s own summation.

The report covers “how often a routine, full-device scan by Google Play Protect detects a device with PHAs installed”. Built into every Android device, Google Play Protect “scans over 50 billion apps daily from inside and outside of Google Play”, says the tech behemoth.

Out with the old, in with the new?

Click here to see a screenshot of the Android ecosystem security from the Google Transparency Report

Another key finding to emanate from the report is that, for all intents and purposes, the newer your Android version is the likelier you are to avoid being compromised by malware.

This has been the case especially since Android Lollipop (5.x) was launched back in November 2014, with the PHA rate falling consistently from 0.66% for that version to 0.06% for Pie (9.x), released in August 2018.

“Newer versions of Android are less affected by PHAs. We attribute this to many factors, such as continued platform and API hardening, ongoing security updates and app security and developer training to reduce apps’ access to sensitive data,” reads the report.

To put things into perspective, however, the share of devices running one of Android’s latest two versions – Oreo (8.x) and Pie – remains low, as shown by Google’s own data as of October 26, 2018. In fact, on distribution of less than 0.1%, Pie has yet to get a piece of that pie (chart).

Meanwhile, nearly one in every three Android-powered devices run either Lollipop or one of the platform’s even older versions.

This, of course, has to be considered (among other things) against the backdrop of the glacial pace at which many mobile phone manufacturers deliver software updates to Android users – provided that they deliver them at all, of course.

Photo Caption: Tomas Foltyn, security writer at ESET



date:Posted: May 24, 2019
INTERNATIONAL. The possibility of cosmic real estate is approaching rapidly, with the engineer poised to pioneer the process; It is entirely likely that our next chapter as a species is written in the stars.
date:Posted: May 24, 2019
KUWAIT. Global and regional yields trended lower in the first quarter; About US$30 billion in fund inflows expected following EMBI index inclusion.
date:Posted: May 23, 2019
SAUDI ARABIA. Millennials in Saudi Arabia are more satisfied with their life today compared to global peers; Saudi youth are more ambitious about career and entrepreneurship opportunities; 94% would consider joining the gig economy.