Latest news with #DaveKleidermacher
Forbes
16-05-2025
- Forbes
Google's New Android Update — 3 Things Your Phone Can No Longer Do
Android security update adds preventative user blocks. Update, May 16, 2025: This story, originally published May 14, has been updated with news of more security features that have either arrived or are coming real soon now as part of Android 16, as announced in Google's latest Android update and beyond, including new Advanced Protection Program additions and SMS authentication code automation. Usually, when an update stops you from doing things, it's hardly a cause for celebration. Sometimes, however, it really should be, and Google has just confirmed that with a new Android update that is simultaneously restrictive and freeing. We've seen this before with the news that Android smartphones will soon start automatically replacing passwords with passkeys, for example. Now, Google has announced a trio of new features for Android smartphones that, while restricting certain activities, will also enhance user security and privacy. Here's what you need to know. Anyone who knows me will happily agree that I really don't like being told what to do, so why am I rather pleased that Google has confirmed a new Android update that imposes restrictions on smartphone users whether they like it or not? Because, dear reader, I'm a security geek, and sometimes the best preventative medicine is the one you're told to take. Or, as in the latest Android security update, the three not so bitter to swallow attack mitigation pills. A May 13 announcement from Dave Kleidermacher, Google's vice president of engineering for Android security and privacy, has confirmed that new in-call security protections have been added to the smartphone user armory. These restrictive measures come by way of response to the fact that Google's own research, Kleidermacher said, showed that threat actors love to persuade victims into performing certain risky actions during a conversation. Actions such as changing default security settings or granting new app permissions, for example. 'These actions can result in spying, fraud, and other abuse by giving an attacker deeper access to your device and data,' Kleidermacher warned. Advising that the new security measures are entirely executed on your smartphone device, and then only where a conversation is with someone not already in your existing contacts, Kleidermacher confirmed that Google is 'working to block specific actions and warn you of these sophisticated attempts.' Announcing Android's new protections, Google confirmed the three user actions that would now be prevented during a call: disabling Google Play Protect, sideloading an app, changing app accessibility permission and Google's Play Protect is activated by default, and for good reason: it is continually scanning for malicious app behavior and protecting the user from the consequences. Being persuaded to disable this protection during a call is almost certainly a sign of an attack in progress. Preventing you from being able to do so, therefore, is a good thing. If you side-load an app, meaning that it is from somewhere other than an official Google download store, it leaves you open to installing malware as the app may not have been properly vetted for security issues. The new protections prevent users from sideloading any new app from a web browser, messaging app or any source, during a call. And finally, if you are persuaded to grant accessibility permissions that you otherwise wouldn't need, this is a massive red flag from the security and privacy perspectives. Doing so can provide an attacker with access to 'gain control over the user's device and steal sensitive or private data, like banking information,' Kleidermacher warned. There is a fourth aspect to this Android update, but I've not included it in the magic number of three as it's a prompt rather than a straight restriction. This is when you are using screen sharing during a call, Android will now prompt you to stop sharing when the call ends to prevent an attacker from attempting to gain access to data. As reported by a well-respected tipster, Android users could soon see a major update to how two-factor authentication codes are handled when sent by SMS to their smartphones. Let's get the security elephant in the story out of the way first: don't use SMS if you have any alternative available. Equally, of course, do use SMS if you don't, as any 2FA is better than none. SMS remains, however, the weak link when it comes to the delivery of verification codes as it is a much less secure method compared to the use of an authentication code application, push verification in-app or, best of all, using a passkey. OK, all that said, back to the SMS automated code news. Android code guru Leopeva64 spotted Canary beta code that suggests 'Chrome for Android could soon detect and extract verification codes sent via SMS and automatically fill them in, eliminating the need to manually copy and paste them.' This doesn't fill me with excitement, truth be told, as it adds little to the security of the SMS code method beyond preventing someone copying the clipboard where you have had to cut and paste before to achieve the same result with the website concerned. SMS remains insecure, weak, and unrecommended. Far more exciting, if you ask this cybersecurity nerd anyway, is the Google confirmation of the piloting of new and enhanced protections for banking apps during calls. Although not available for everyone quite just yet, Kleidermacher announced that Google is piloting new in-call features to protect banking app starting in the U.K. 'Screen sharing scams are becoming quite common, with fraudsters often impersonating banks, government agencies, and other trusted institutions,' Kleidermacher explained, 'using screen sharing to guide users to perform costly actions such as mobile banking transfers.' This is where the protections will kick in for those chosen to pilot the functionality, based on the banking apps that are participating in the initial pilot program. This means U.K. users of Monzo, NatWest and Revolut, with Android users of those banks automatically being enrolled in the coming weeks. 'When you launch a participating banking app while screen sharing with an unknown contact,' Kleidermacher said, 'your Android device will warn you about the potential dangers and give you the option to end the call and to stop screen sharing with one tap.' You will need to be using Android 11 or later, and it only kicks in when you are on a phone call with an unknown contact. The recent launch of real-time scam detection in Google Messages was something I covered at the time, but now Google says it is making these protections more intelligent. The aim of scam detection is essentially what it says on the tin: to protect users from conversational scams with malicious intent. That means any of those phishing and fraud messages you might get by way of Google Messages or Phone by Google. The protection kicks in when it determines the conversation to be suspicious, based on context learned from analyzing thousands upon thousands of such attacks, and issues a real-time warning to end the chat before you can be conned. All of this is achieved, Google said, on-device so all your conversations remain 100% private and you can disable it at any time to ensure you maintain full control. 'We've now expanded our detections to help protect you from a wider variety of sophisticated scams,' Kleidermacher confirmed. These include the following: As regular Forbes readers will be only too aware of by now, I am both an enthusiastic supporter and a highly satisfied user of Google's advanced protection program which can prevent any number of Gmail account takeover attacks from succeeding. The latest Android update announcement has some good news from Google regarding the advanced protection program for Android users. Confirming that the APP 'provides Google's strongest protections against targeted attacks,' Kleidermacher went on to announce that, for Android 16 users at least, this advanced protection is being extended to include device-level security. Kleidermacher's confirmation was, truth be told, but a tease; the real detail was to be found in another announcement, this time by Google's Android security group product manager, Il-Sung Lee. 'Advanced Protection ensures all of Android's highest security features are enabled and are seamlessly working together to safeguard you against online attacks, harmful apps, and data risks,' Lee said, adding that for Android 16 users, it will combine new features with pre-existing ones. If advanced protection is activated, Lee said, then Android 16 users will gain immediate access to: More broadly, the Advanced Protection Program restricts the data that apps can access, blocking most non-Google apps and services from accessing Google account data from Drive or Gmail, for example. 'If anyone tries to recover your account,' Google said, 'Advanced Protection takes extra steps to verify your identity.' This means that it can take a few days to verify that you are who you say you are and get access to your Google account back, but it's a small price to pay for peace of mind against the hacking threat. 'Advanced Protection gives users the option to equip their devices with Android's most effective security features for proactive defense,' Lee said, 'with a user-friendly and low-friction experience.' Not least, it means that the Android user is protected from the accidental or malicious disabling of APP security features using a defense-in-depth paradigm. 'Advanced Protection acts as a single control point that enables important security settings across many of your favorite Google apps,' Lee concluded, 'including Chrome, Google Message, and Phone by Google.' This is one Android update that we can all, surely, get behind.
Forbes
14-05-2025
- Forbes
Google's New Android Update — 3 Things Your Phone Can No Longer Do
Usually, when an update stops you from doing things, it's hardly a cause for celebration. Sometimes, however, it really should be, and Google has just confirmed that with a new Android update that is simultaneously restrictive and freeing. We've seen this before with the news that Android smartphones will soon start automatically replacing passwords with passkeys, for example. Now, Google has announced a trio of new features for Android smartphones that, while restricting certain activities, will also enhance user security and privacy. Here's what you need to know. Anyone who knows me will happily agree that I really don't like being told what to do, so why am I rather pleased that Google has confirmed a new Android update that imposes restrictions on smartphone users whether they like it or not? Because, dear reader, I'm a security geek, and sometimes the best preventative medicine is the one you're told to take. Or, as in the latest Android security update, the three not so bitter to swallow attack mitigation pills. A May 13 announcement from Dave Kleidermacher, Google's vice president of engineering for Android security and privacy, has confirmed that new in-call security protections have been added to the smartphone user armory. These restrictive measures come by way of response to the fact that Google's own research, Kleidermacher said, showed that threat actors love to persuade victims into performing certain risky actions during a conversation. Actions such as changing default security settings or granting new app permissions, for example. 'These actions can result in spying, fraud, and other abuse by giving an attacker deeper access to your device and data,' Kleidermacher warned. Advising that the new security measures are entirely executed on your smartphone device, and then only where a conversation is with someone not already in your existing contacts, Kleidermacher confirmed that Google is 'working to block specific actions and warn you of these sophisticated attempts.' Announcing Android's new protections, Google confirmed the three user actions that would now be prevented during a call: disabling Google Play Protect, sideloading an app, changing app accessibility permission and Google's Play Protect is activated by default, and for good reason: it is continually scanning for malicious app behavior and protecting the user from the consequences. Being persuaded to disable this protection during a call is almost certainly a sign of an attack in progress. Preventing you from being able to do so, therefore, is a good thing. If you side-load an app, meaning that it is from somewhere other than an official Google download store, it leaves you open to installing malware as the app may not have been properly vetted for security issues. The new protections prevent users from sideloading any new app from a web browser, messaging app or any source, during a call. And finally, if you are persuaded to grant accessibility permissions that you otherwise wouldn't need, this is a massive red flag from the security and privacy perspectives. Doing so can provide an attacker with access to 'gain control over the user's device and steal sensitive or private data, like banking information,' Kleidermacher warned. There is a fourth aspect to this Android update, but I've not included it in the magic number of three as it's a prompt rather than a straight restriction. This is when you are using screen sharing during a call, Android will now prompt you to stop sharing when the call ends to prevent an attacker from attempting to gain access to data.
WIRED
13-05-2025
- Business
- WIRED
Google Is Using On-Device AI to Spot Scam Texts and Investment Fraud
Digital scammers have never been so successful. Last year Americans lost $16.6 billion to online crimes, with almost 200,000 people reporting scams like phishing and spoofing to the FBI. More than $470 million was stolen in scams that started with a text message last year, according to the Federal Trade Commission. And as the biggest mobile operating system maker in the world, Google has been scrambling to do something, building out tools to warn consumers about potential scams. Ahead of Google's Android 16 launch next week, the company said on Tuesday that it is expanding its recently launched AI flagging feature for the Google Messages app, known as Scam Detection, to provide alerts on potentially nefarious messages like possible crypto scams, financial impersonation, gift card and prize scams, technical support scams, and more. Combined with other AI security features for Google Messages—all of which run locally on users' devices and do not share data or message content with the company—Android is now detecting roughly 2 billion suspicious messages a month. 'The fraud is truly heartbreaking,' says Dave Kleidermacher, vice president of engineering at Android's security and privacy division. 'There's really a very huge amount—almost epidemic and a scourge to humanity—of financial scams that are all across the world.' Scammers operate all over the world, but Chinese scam groups particularly are behind millions of fraudulent messages, demanding things like 'toll' payments or information for alleged postal service deliveries. When people click the links and enter their details, including payment information, scammers steal their data. In some cases, the scams are designed as a sort of smash-and-grab, where attackers quickly trick users into giving up some crumbs of information, like a pair of login credentials or a credit card number. These scams tend to be more formulaic and are potentially easier to detect. The more complex challenge is in detecting highly involved investment or romance scams—often called pig butchering scams—that build and evolve over months of messaging while scammers build a rapport with their targets before tricking them into handing over their life savings or even going into debt to send more money. 'It takes time for them to get to the scam—it's not just click on the link,' Kleidermacher says. 'By having the AI on-device, you can actually watch and observe these more sophisticated conversations and then detect their scams.' In a screenshot of the Scam Detection feature provided by Google, an encrypted RSC chat shows a typical scam message saying an EZ Pass toll payment is outstanding. The message adds that the 'legal ability' to drive may be revoked if the payment is not made. The message includes a link that directs someone toward a malicious payment website. The Scam Detection overlay at the bottom of the screen says that 'suspicious activity' has been detected in the message and offers a way to report and block the sender, alongside an option that allows people to flag that it is not a scam. Google is far from the only company using AI to try to combat scammers and stop them from reaching people's inboxes. Some have turned to using AI to directly fight back against scammers. The British telecom company O2, for example, created an 'AI Granny' that is set up to keep scammers on the phone and waste their time. And the online scam baiter Kitboga has created a series of bots to make simultaneous calls to call centers that run scams. Meanwhile, in recent months, Meta, which owns WhatsApp, Messenger, and Instagram, has started to introduce pop-up warnings when people are asked to make payments in chat messages. Elsewhere, cybersecurity company F-Secure has created a beta tool to help people identify if a message and sender are likely scammers and block messages. Putting a layer of friction in place that nudges people away from messaging accounts they don't know or replying to messages asking for details can reduce the chances that scammers are successful. Google's Kleidermacher says that the company is seeing 'really positive impact' from using its machine learning systems to detect potential scam messages in real time. As the protections continue to mature, he notes that the underlying system could eventually proliferate beyond just the Google Messages app into third-party communication platforms. For now, some of that expansion is starting within Google's own products. The company also said on Tuesday that it is in the early phases of testing ways to incorporate scam detection for phone calls, but the capability has not been widely deployed.
