Google to Authenticate All Android Developers in Four Countries to Prevent Malicious Apps

Google has announced plans to verify the identity of all developers distributing apps on Android, including those outside the Play Store. The company stated that all apps must be registered by verified developers to be installed on certified Android devices, enhancing accountability and making it more difficult for malicious actors to distribute harmful apps. Invitations for this verification process will begin in October 2025, with a full rollout for all developers expected by March 2026. The new requirements will take effect in September 2026 in Brazil, Indonesia, Singapore, and Thailand, where any app installed on certified devices must be registered by a verified developer.

This initiative aims to prevent malicious impersonation of developers and the distribution of fake apps, particularly through third-party marketplaces. While developers using the Google Play Store are likely to meet these verification requirements already, a separate Android Developer Console account is being developed for student and hobbyist developers. Google emphasised that this new layer of security is designed to protect users from repeat offenders spreading malware and scams, while maintaining user choice and enhancing overall security. These changes come amid potential reforms to the Play Store following an antitrust lawsuit by Epic Games in 2020, which may lead to the distribution of competing app stores through Google Play. 

Categories: Developer Verification, App Security, Android Ecosystem Changes 

Tags: Android, Developer Verification, App Distribution, Google Play Store, Malicious Apps, User Security, Certified Devices, Third-Party Marketplaces, Accountability, Sideloading