Google has unveiled a groundbreaking security feature in Android<\/a> 16 Beta 2 aimed at combating phone scams by blocking users from altering sensitive settings during active phone calls.\u00a0<\/p>\n This feature, currently live in the beta version, prevents enabling permissions like sideloading apps and granting accessibility access, both of which are commonly exploited by scammers.<\/p>\n Phone scams have become increasingly sophisticated, often leveraging psychological manipulation to trick victims into granting permissions that enable malware installation.\u00a0<\/p>\n A common tactic involves guiding victims over the phone to enable sideloading or accessibility permissions, which allow malicious apps to bypass safeguards and gain control of the device.<\/p>\n Recognizing this vulnerability<\/a>, Google has introduced \u201cin-call anti-scammer protection\u201d in Android 16.\u00a0<\/p>\n Android Authority reports<\/a> that the system detects when a call is active, and blocks attempt to modify these critical settings. If a user tries to enable such permissions during a call, they are met with a warning message, such as:<\/p>\n This proactive measure introduces friction into the scam process, potentially disrupting the scammer\u2019s flow and giving victims time to reconsider their actions.<\/p>\n Sideloading, which allows apps to install other apps outside official app stores, is disabled by default for security reasons.<\/p>\n Android 16 now prevents users from enabling this permission while on a call. The feature builds on existing restrictions in Google\u2019s Advanced Protection Mode.<\/p>\n Accessibility permissions allow apps to read screen content and perform actions on behalf of users\u2014a capability often exploited by malware.<\/p>\n Android 16 blocks granting these permissions during calls, further reducing the risk of unauthorized control.<\/p>\n Users attempting to bypass these restrictions receive clear warnings about potential scams, encouraging them to verify the legitimacy of the caller.<\/p>\n This feature extends protections introduced in Android 15, adding more stringent safeguards against unauthorized access to sensitive settings.<\/p>\n The new security feature<\/a> is part of Google\u2019s ongoing efforts to enhance user safety amid rising threats like telephone-oriented attack delivery (TOAD) scams.\u00a0<\/p>\n These scams often involve sending fraudulent SMS messages or inducing urgency through phone calls to trick users into installing malware.<\/p>\n By integrating these protections into Android 16 Beta 2, Google aims to reduce fraud cases significantly. <\/p>\n While scammers might still instruct victims to hang up and enable permissions later, the added step introduces enough friction to disrupt their tactics.<\/p>\n Additionally, Android 16 includes broader security enhancements such as protection against intent redirection attacks and improved app compatibility for large-screen devices.\u00a0<\/p>\n The anti-scammer protections are currently live in Android 16 Beta 2, available for Pixel devices (Pixel 6 and newer).\u00a0<\/p>\n The final release<\/a> of Android 16 is expected later in Q2 2025. With these features set for public rollout, users can look forward to a safer mobile experience that prioritizes privacy and fraud prevention.<\/p>\n As scams grow more sophisticated with advancements in AI, Google\u2019s new approach marks a significant step toward mitigating risks and empowering users with robust defenses against cyber threats<\/a>.<\/p>\n PCI DSS 4.0 & Supply Chain Attack Prevention \u2013\u00a0Free Webinar<\/a><\/strong><\/p>\n The post New Android Security Feature that Blocks Changing Sensitive Setting During Calls<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\nKey Features of the New Security Measure<\/strong><\/h2>\n
Blocking Sideloading Permissions During Calls:<\/strong><\/h4>\n
Restricting Accessibility Access:<\/strong><\/h4>\n
Warning Prompts:<\/strong><\/h4>\n
Enhanced Confirmation Mode:<\/strong><\/h4>\n
Technical Insights and Broader Implications<\/strong><\/h2>\n
![\"\"](\"https:\/\/lh7-rt.googleusercontent.com\/docsz\/AD_4nXfAbzXKNkCSE_4HG7gur5f_zRU4W77K2OWl_8r30U_UhFl41ksGZlK5WT9_eeThE7_h4s8oAZzxRcxB6--na4_InZtCCO2rWUZDmbTkPAYZ758Jfr3ILSFoWwNBGF_82fQtNslqkw?key=PA3oBECwNhPxBPUfTDBqDO--\")