Google s great Android app purge - what it means for you Tom's Guide Skip to main content Tom's Guide is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Here's why you can trust us. Google s great Android app purge - what it means for you By Roland Moore-Colyer Contributions from Richard Priday published 11 April 2022 Here's why you should be careful with the Android apps you download (Image credit: Shutterstock) Update: Google is making it easier to find good Chrome extensions, here's how If the past few days are anything to go by, you should be extra cautious when it comes to downloading apps from the Google Play Store. That's because there's been a spate of malware that's managed to sneak into legitimate-looking apps that were hosted on the Play Store. Through various obfuscation methods, like hiding links to malware in the apps rather than actually loading them with malicious code, these apps were able to circumnavigate Google's security measures. Case in point: Google recently pulled six antivirus apps from the Play Store that were loaded with Sharkbot, a type of trojan malware that was used to trick people into inputting their account and banking details, which were then sucked up and passed back to a command and control server for hackers to use at a later date. Given these apps posed as fairly legitimate Android antivirus tools, it's easy to understand how they were downloaded and installed some 15,000 times. And the second major malware-loaded app purge saw Google ban a group of apps that were present on a massive 60 million devices and were found to be sending detailed data to a company with links to the U.S. security agencies. The apps did this pilfering via a software development kit (SDK) embedded in them that was capable of collecting data on a device's location, personal details, clipboard and certain files, as well as devices on the same Wi-Fi network. The SDK harvesting this data came from a Panama-based company named Measurement Systems. It allegedly paid developers between $100 and $10,000 a month to include the code in their apps, saying to one of the developers that it was gathering data for ISPs, finance and energy companies, with a focus on users in the Middle East, Asia, Central and Eastern Europe. Somewhat worryingly, after researching Measurement Systems, Serge Egelman and Joel Reardon, a pair of security researchers from AppCensus, found that the SKD was linked to Vostrom Holdings, a Virginian defense firm that works for the U.S. government through another subsidiary, Packet Forensics. So it's pretty worrying that apps loaded with such spying tools made their way onto the Play Store. How to protect yourself from Android malware (Image credit: Shutterstock) Should you be worried? The good news is that Google is very quick to seek out and remove malware or spyware-loaded apps. And security researchers are dedicated to hunting down such apps. But at the same time it's worth being cautious. First off, always make sure you install applications only from trusted and verified publishers. If an unknown developer is suddenly offering, say, a game that looks like Call of Duty Mobile or a free Netflix-like streaming service, it could be a dodgy developer trying to trick you to download an app that's either got malware or will bombard you with adverts; these used to be rather common in the early days of Android. We also suggest avoiding apps and services that need to be side-loaded unless you are completely sure they come from 100% legitimate sources. If an app does get your attention, then do a sense check by seeing what else is out there from the same publisher. And do make sure to look at app reviews, star ratings and how many times an app has been downloaded, as these offer a reasonable idea of how legitimate apps are. Apps with tens of thousands of downloads, like Instagram, as well as solid reviews, would suggest an app is safe and legitimate. Do also avoid apps that ask you for a seemingly inordinate amount of information, especially any that wants you to part with any payment details. A lot of good and legitimate apps will tend to have Google Pay integration. Android does still have some solid security features built in, but for extra protection check out our picks for the best Android antivirus apps. These antivirus tools can scan your phone and sniff out threats and mitigate them. If you do encounter some dodgy apps, then make sure to alert Google to their presence. And feel free to flag any suspicious apps you spot to Tom's Guide and we will investigate them.Today's best Google Pixel 6 dealsPlansUnlockedGet $50 off this p... (opens in new tab)No contractGoogle Pixel 6 (Installments 128GB) (opens in new tab)Google Pixel 6 (Installments 128GB) (opens in new tab)Free (opens in new tab) upfront$35.79/mth (opens in new tab)Unlimited minsUnlimitedtexts4GBdataCalls: Calls to MX & CA includedTexts: Messaging to MX & CA includedData: (slowed to 128kbps speeds) (opens in new tab)No contractUnlimited minsUnlimitedtexts4GBdataCalls: Calls to MX & CA includedTexts: Messaging to MX & CA includedData: (slowed to 128kbps speeds)View (opens in new tab)at Mint Mobile (opens in new tab)Free (opens in new tab) upfront$35.79/mth (opens in new tab)View (opens in new tab)at Mint Mobile (opens in new tab)Get $31 off this p... (opens in new tab)No contractGoogle Pixel 6 (128GB) (opens in new tab)Google Pixel 6 (128GB) (opens in new tab)$465 (opens in new tab) upfront$30/mth (opens in new tab)Unlimited minsUnlimitedtextsUnlimiteddataCalls: to the US, CA, MEX and more + Unlimited Global TextData: Unlimited 2G after using 20GB 4G LTE/5G data (opens in new tab)No contractUnlimited minsUnlimitedtextsUnlimiteddataCalls: to the US, CA, MEX and more + Unlimited Global TextData: Unlimited 2G after using 20GB 4G LTE/5G dataView (opens in new tab)at Twigby (opens in new tab)$465 (opens in new tab) upfront$30/mth (opens in new tab)View (opens in new tab)at Twigby (opens in new tab)Get $50 off this p... (opens in new tab)No contractGoogle Pixel 6 (Installments 128GB) (opens in new tab)Google Pixel 6 (Installments 128GB) (opens in new tab)Free (opens in new tab) upfront$40.79/mth (opens in new tab)Unlimited minsUnlimitedtexts10GBdataCalls: Calls to MX & CA includedTexts: Messaging to MX & CA includedData: (slowed to 128kbps speeds) (opens in new tab)No contractUnlimited minsUnlimitedtexts10GBdataCalls: Calls to MX & CA includedTexts: Messaging to MX & CA includedData: (slowed to 128kbps speeds)View (opens in new tab)at Mint Mobile (opens in new tab)Free (opens in new tab) upfront$40.79/mth (opens in new tab)View (opens in new tab)at Mint Mobile (opens in new tab)We check over 250 million products every day for the best prices Be In the Know Get instant access to breaking news, the hottest reviews, great deals and helpful tips. Roland Moore-ColyerRoland Moore-Colyer a Managing Editor at Tom's Guide with a focus on news, features and opinion articles. He often writes about gaming, phones, laptops and other bits of hardware; he's also got an interest in cars. When not at his desk Roland can be found wandering around London, often with a look of curiosity on his face. With contributions fromRichard PridayStaff Writer Topics Security Smartphones See all comments (0) No comments yet Comment from the forums MOST READMOST SHARED1I built a Framework laptop myself - and it lives up to the hype2The Pixel 7 Pro just blew away the iPhone 14 Pro - here's why3The best password managers in 20224The best gaming headsets in 20225The 25 best Mac games to play right now1Hulu's price hike is coming - here's how to avoid it and save2Rings of Power episode 7 just ruined the show for me - here's why3I built a Framework laptop myself - and it lives up to the hype4The Pixel 7 Pro just blew away the iPhone 14 Pro - here's why5The best password managers in 2022