Skip to main content

Google will now warn against third-party security issues

(Image credit: Google)

Compared to the iPhone's closed ecosystem, in which Apple builds and serves all software updates, Android (opens in new tab)is a lot less centralized. This means security flaws found on devices not built by Google are sometimes not addressed effectively.

To tackle the issue, Google has launched (opens in new tab) the Android Partner Vulnerability Initiative (APVI) - a security program designed to tackle security flaws on devices outside the Pixel range.

“The APVI covers Google-discovered issues that could potentially affect the security posture of an Android device or its user and is aligned to ISO/IEC 29147:2018 Information technology — Security techniques — Vulnerability disclosure recommendations,” the company explained.

The program represents the latest in a long line of improvements Google has made to protect Android (opens in new tab) users. There's also the Android Security Rewards Program, as well as the Google Play Security Rewards Program, both of which allow devs to report vulnerabilities directly to Google.

Alongside the announcement, Google also revealed it had discovered a few vulnerabilities in certain bloatware applications, including one browser flaw that could potentially expose user data (which has now been patched).

Those interested in tracking the program's progress can do so here (opens in new tab). On this page, Google will list all of the vulnerabilities discovered through the program - and some are already listed.

Sead Fadilpašić is a freelance tech writer and journalist with more than 17 years experience writing technology-focussed news, blogs, whitepapers, reviews, and ebooks. And his work has featured in online media outlets from all over the world, including Al Jazeera Balkans (where he was a Multimedia Journalist), Crypto News, TechRadar Pro, and IT Pro Portal, where he has written news and features for over five years. Sead's experience also includes writing for inbound marketing, where he creates technology-based content for clients from London to Singapore. Sead is a HubSpot-certified content creator.