Google to block certain sideloaded apps in India to combat fraud

Google will begin blocking the sideloading of specific apps in India. The announcement, made during the annual Google for India event, signals a tightening of security protocols under Google’s “enhanced fraud protection” initiative, part of the Google Play Protect framework.

The new measures come at a time when online fraud is an increasingly dire issue in India, the world’s most populous country. Google claims its fraud protection efforts have already saved over $1.55 billion in potential financial losses in India. The company has also shown 41 million warnings related to fraudulent transactions through Google Pay and identified 10 million malicious apps globally with Play Protect.

The pilot program focuses on sideloaded apps that request sensitive permissions—such as access to SMS, notifications, and accessibility features—since these permissions are frequently exploited by fraudsters. Google’s analysis revealed that over 95% of high-risk app installations come from sources like web browsers, messaging apps, and file managers. As part of the new protection, Play Protect will automatically block sideloading through these channels if an app requests potentially dangerous permissions.

This isn’t the first time Google has taken steps to address the issue. In 2023, the company introduced real-time scanning features in India designed to block malicious sideloaded apps. While effective against many dangerous apps, some, particularly predatory loan apps, managed to slip through the cracks. Google also launched enhanced fraud protection in Singapore earlier this year, preventing nearly 900,000 high-risk installations within six months.

However, the new pilot in India will not completely eliminate sideloading. Users can still install offline apps and use third-party app stores. The primary focus is on apps installed via sideloading that pose a high security risk by abusing sensitive permissions.

In a bid to further strengthen security in the country, Google also announced the opening of a new Google Safety Engineering Center in India, set to launch in 2025. The center will focus on building security solutions and products, with a specific emphasis on online fraud prevention and cybersecurity. Google’s safety engineers will collaborate with local policy experts, government agencies, and academic institutions to tackle India’s pressing online safety challenges.