Google Play Protect fails AV-Comparatives' anti-malware test
Google’s built-in malware protection for Android has failed a test conducted by security researchers at AV-Comparatives.
AV-Comparatives is an independent lab which tests anti-malware solutions against known malicious applications.
For its Android test, AV-Comparatives pitted security products from ten popular vendors against a test set of 3,601 malicious apps.
A built-in security solution is somewhat expected to not perform as well as dedicated products, but Google Play Protect fell way behind the others.
All of the dedicated products had detection rates of at least 99 percent, with Trend Micro detecting 100 percent. Securion OnAv performed the worst of the dedicated solutions, albeit still detecting 99.4 percent of malware samples.
In comparison, Google Play Protect detected just 83.2 percent. Furthermore, in a test of 500 popular apps to detect false positives, Play Protect was the worst performer and wrongly flagged 28 apps as malware.
Google's Play Protect "does not yet provide effective protection," AV-Comparatives concluded. The researchers recommend that users also run third-party security software to protect themselves.
In Western countries, most people download their Android apps through the Play Store; which itself offers a fairly high degree of protection. AV-Comparatives highlights the risk of infection is much higher in Asia countries.
Many users in China do not have access to the Play Store and use hardware rooted with privileges that can give malicious apps greater access to private data and the ability to control the device.
Play Protect is good in offering users some built-in protection, but it’s clear Google still has a lot of work to do before it’s as capable as dedicated anti-malware solutions.
You can find AV-Comparatives’ full test results here.
Interested in hearing industry leaders discuss subjects like this? Attend the co-located IoT Tech Expo, Blockchain Expo, AI & Big Data Expo, and Cyber Security & Cloud Expo World Series with upcoming events in Silicon Valley, London, and Amsterdam.
- » Python libraries imitating ‘dateutil’ and ‘jellyfish’ caught stealing SSH and GPG keys
- » StrongSalt’s new Open Privacy API offers ‘encryption as a service’
- » Ethereum founder Vitalik Buterin supports petition to release arrested dev
- » AppsFlyer: ‘Hyper casual’ gaming is boosting in-app advertising
- » Sophos launches a security analysis platform for developers