In 2025, Google significantly enhanced security measures for the Play Store by integrating AI-driven review systems and implementing stricter developer controls. This led to the blocking of over 1.75 million policy-violating apps and the banning of more than 80,000 developer accounts associated with harmful software.
AI-Powered Review Enhancements
Google incorporated generative AI models into its review workflow to assist human reviewers in identifying complex malicious behavior more efficiently. Each app submitted to the Play Store undergoes over 10,000 safety checks before publication, with continuous monitoring post-launch. The company also tightened developer controls, including identity verification and expanded testing requirements, to prevent repeat offenders from resurfacing under new accounts.
Data Privacy and User Protection
Beyond malware, Google blocked more than 255,000 apps from accessing unnecessary or excessively sensitive user data. In 2025, the system also intercepted 160 million spam ratings and reviews, mitigating coordinated review bombing and preventing an average 0.5-star rating drop for affected apps. Additional safeguards were introduced to protect younger users from apps related to gambling or dating.
Expanded Fraud and Scam Protections
Play Protect now scans over 350 billion Android apps daily, identifying more than 27 million new malicious apps distributed outside the Play Store. Enhanced fraud protections, now covering 185 markets and 2.8 billion devices, blocked 266 million risky install attempts and shielded users from 872,000 unique high-risk apps. Google also introduced measures to prevent users from disabling Play Protect during active calls, countering phone-based scams.
To combat repeat offenders, Google expanded developer verification requirements beyond the Play Store and introduced a limited-distribution account option for students and hobbyists. Android 16 will feature additional safeguards for sensitive data, such as banking credentials, and protections against tapjacking.
Google's strategy focuses on prevention by filtering harmful software before publication, tightening developer accountability, and strengthening on-device protections as attackers increasingly use automation and AI.