Google has launched a sweeping security and privacy overhaul for its Android operating system—an aggressive response to rising global threats, from financial scams and phishing attacks to unauthorized device access.
The tech giant unveiled its new vision at the Android Show in California, detailing a series of robust updates designed to “protect users in the real world,” especially amid a sharp increase in social engineering schemes and mobile fraud, which have shown alarming growth across the Middle East and Asia.
“It’s no longer just about passwords or permissions—it’s about active intervention in real time,” said Dave Kleidermacher, VP of Engineering for Android Security, during the Android Show keynote.
At the heart of the announcement is Android 16’s real-time threat prevention system, which uses AI to block high-risk behaviors during live calls with unknown numbers—often the frontline for phone scams. In a global first, Android will prevent the user from disabling Google Play Protect during such interactions, ensuring continuous malware scanning.
MEO has learned from sources close to Google MENA that a pilot program involving telecom regulators in the UAE and Saudi Arabia is under discussion, aimed at integrating localized scam reporting into Android’s fraud detection engine.
Another critical update includes smarter screen-sharing defenses. If a user begins to access a banking app while screen sharing—especially with an unverified party—the device will trigger a full-screen alert, allowing the session to be immediately paused.
This feature is currently being tested in collaboration with UK banks and may soon expand to select financial institutions in the GCC, MEO has exclusively learned.
Android’s Google Messages app is also getting a significant upgrade. Its AI-based fraud detection, originally launched in early 2024, now recognizes an expanded range of schemes including:
- Crypto and NFT fraud
- Fake tech support calls
- Gift card hoaxes
- Billing impersonations
“Machine learning is our front line of defense in communications,” said Tina Malhotra, lead product manager for Google Messaging, who confirmed the algorithm has been trained on over 15 billion anonymized fraud signals.
The expanded detection capabilities will be rolled out across Android 10 and newer, with SIM-swap detection as a highlight. If a user’s number is hijacked and the attacker sends messages from a new device, the intended recipient will see the message flagged as “unverified.”
Another innovative feature arriving with Android 16 is contextual protection of OTPs (One-Time Passwords). These sensitive codes will now remain hidden unless the user has recently unlocked the device and is on a secure Wi-Fi network.
In the context of MENA markets, where SMS-based OTP hijacking has spiked—particularly in online banking and e-commerce—this adds a critical barrier against SIM jacking and spoofing attacks.
Google Play Protect is also stepping up its role from passive monitor to active digital guardian. New detection logic will identify apps that attempt icon manipulation, stealth installations, or permissions obfuscation—all common traits of spyware and fraudware.
Initially available on Pixel 6 and newer devices, this feature is expected to extend to major Samsung and Xiaomi devices across the region in Q3 2025, according to OEM sources.
For users enrolled in Google’s Advanced Protection Program, on-device defense mechanisms will be further strengthened, including a new biometric security challenge that blocks remote access even if login credentials are compromised.
Additionally, a Find My Hub feature is being introduced. This tool not only tracks devices but also supports real-time geolocation of family, friends, and tagged valuables, using ultra-wideband signals and encrypted proximity sharing.
“This is especially useful in high-risk zones or travel-heavy environments, like airports or mass gatherings,” noted Dr. Noura Al-Khatib, cybersecurity fellow at the Dubai Future Foundation.
With the Middle East undergoing a rapid digital transition, cybercrime—especially financial phishing, tech impersonation, and SIM fraud—has escalated sharply.
According to a 2024 report from Dubai’s Cybercrime Unit, mobile scam complaints rose 38% year-over-year, with the highest concentrations in the UAE, KSA, and Egypt.
“These Android updates are a step toward flipping the power dynamic—from scammer to system,” said Mohamed Samir, regional mobile security consultant and former advisor to the Arab League’s Digital Policy Council.
By embedding AI and context-aware defenses deep into Android’s core, Google is no longer waiting for attacks—it’s intercepting them at the gate.
And with Google I/O set to deliver even more announcements, 2025 may be remembered as the year Android stopped being reactive—and started getting proactive.
