Google to Require Developer Verification for All Android Apps to Combat Malware.

In a significant move to enhance user safety and combat the rise of malware and financial scams, Google has announced a new policy that will require all Android apps to come from a verified developer. This mandate, which is set to be implemented in stages starting in 2026, will extend beyond the Google Play Store to include apps installed via third-party stores and even sideloading.

This new requirement applies to certified Android devices that are preloaded with Google Play Protect. The goal is to make it significantly more difficult for malicious actors to anonymously distribute harmful apps. Google compares this process to an ID check at an airport: it confirms the developer's identity without reviewing the app's content or its source. This will help prevent the spread of "convincing fake apps" that often mimic legitimate services to trick users.

Initial developer access to the verification process will begin in October of this year, with the program opening to all developers in March 2026. The requirement will first go into effect for users in Brazil, Indonesia, Singapore, and Thailand in September 2026, as these countries have been particularly impacted by fraudulent app scams. A global rollout will follow in 2027.

Developers who distribute their apps outside of the Play Store will be able to use a new Android Developer Console to complete the verification process, ensuring they can continue to offer their apps directly to users while meeting the new security standards.