Google Working On Built-in Anti Phishing Feature For Android

In a bid to enhance online safety for Android users and combat cyber threats, Google is developing an anti-phishing feature, which has been spotted within the Android 14 QPR2 Beta 2 release, the media has reported. The security enhancement aims to automatically identify suspicious apps, providing added protection against phishing attacks, which can deceive even the most tech-savvy users, the media has reported. Phishing attacks have the capability to deceive even the most technologically adept users into disclosing sensitive information.

When activated, this functionality will scrutinize "app activity for signs of phishing or deceptive behaviour". According to the report, the security check involves scanning the app for specific indicators of deceptive conduct.

According to Google, the scanning process occurs privately on your device. If any phishing or deceptive behavior is detected, certain app information is sent to Google Play Protect to verify the threat and alert app users.

Discovered first by Android Police in the QPR2 Beta 1 release, the feature, labeled "scanning for deceptive apps," can be found in Settings > Security & privacy > More security & privacy. Upon activation, it scans app activity for indications of phishing or deceptive behaviour. Google guarantees users that the scanning occurs privately on the device, with app information sent to Google Play Protect for confirmation and user warnings only if suspicious behaviour is detected.

However, the tech giant has not disclosed official details of the feature, and the report did not unveil the precise method Android will employ to identify deceptive apps, or develop the anti-phishing feature, a Phone Arena report added.

Although the feature's presence appears confirmed from the discovered code, the operational specifics remain uncertain. Since Google has not officially documented it, it has created a number of unanswered questions. However, a thorough examination of the decompiled source code indicates the existence of a system service named "ContentProtection", seemingly tasked with identifying deceptive app behaviour.

The actual impact of this integrated anti-phishing feature is yet to be determined, but it marks a noteworthy advancement in Android's security measures. Given the constant evolution of malware to elude detection, an extra layer of protection holds substantial value. This feature has the capacity to prevent users from succumbing to phishing scams and protect their sensitive information.