Friday, October 4, 2024
HomeAndroidGoogle to Block Android Loan Apps Accessing User Photos, Contacts & Videos

Google to Block Android Loan Apps Accessing User Photos, Contacts & Videos

Published on

Google plans to restrict apps that offer loans to individuals from accessing confidential user information, including contacts, photos, and videos, to prevent inappropriate behavior from lenders that threaten borrowers. 

On Wednesday, Google updated its Personal Loans policy for Play Store apps, imposing new limitations that prevent apps from accessing external storage, photos, videos, contacts, the precise location, and call logs. 

“Apps that provide personal loans, or have the primary purpose of facilitating access to personal loans (i.e. lead generators or facilitators), are prohibited from accessing sensitive data, such as photos and contacts,” Google said.

- Advertisement - EHA

The modification will take effect from May 31. Google is stepping up its efforts to address the problem with this action.

Loan Apps Gain Full Control of Contact List

Recent reports indicate a worrying trend in which some people who obtained credit using mobile apps have been subjected to debt collection harassment.

These debt collectors allegedly accessed the borrowers’ personal contacts and informed family members of unpaid debts. 

Agents have used modified photographs more severely to intimidate further and torment persons who owe money. 

Unfortunately, a number of those who were targeted have given in to the pressure and committed suicide. Many victims have complained that lenders have blackmailed them or harassed their friends and family using embarrassing or altered photos in places like India and Mexico.

Google Implemented Regulations to Block Unregistered Loan Apps

After being notified by law enforcement and central banks, Google initially removed thousands of personal loan apps from the Play Store. The company also implemented regulations to prevent unregistered loan apps from appearing in the Android app store.

According to Google, apps that advertise personal loans in Pakistan on the Play Store must submit particular license papers to prove their ability to provide or facilitate credit.   

Additionally, the company mandated that all non-banking financial institutions in the nation maintain only a single digital lending app on the Play Store.

“We’re introducing additional requirements for personal loan apps targeting users in Pakistan. Personal loan apps in Pakistan must submit country-specific licensing documentation to prove their ability to provide or facilitate personal loans”, Google.

“Each non-banking finance company (NBFC) lender can only publish one digital lending app (DLA). Developers who attempt to publish more than one DLA per NBFC risk the termination of their developer account and any other associated accounts”.

Google updated its policies in several markets, including the Philippines, Nigeria, Kenya, Indonesia, and India.

Searching to secure your APIs? – Try Free API Penetration Testing

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Microsoft, DOJ Dismantle Domains Used by Russian FSB-Linked Hacking Group

Microsoft and the U.S. Department of Justice (DOJ) have successfully dismantled a network of...

Cloud Penetration Testing Checklist – 2024

Cloud Penetration Testing is a method of actively checking and examining the Cloud system...

Linux Malware perfctl Attacking Millions of Linux Servers

Researchers have uncovered a sophisticated Linux malware, dubbed "perfctl," actively targeting millions of Linux...

Doppler Launches ‘Change Requests’ to Strengthen Secrets Management Security with Audited Approvals

Doppler, the leading platform in secrets management, today announces the launch of Change Requests,...

Free Webinar

Decoding Compliance | What CISOs Need to Know

Non-compliance can result in substantial financial penalties, with average fines reaching up to $4.5 million for GDPR breaches alone.

Join us for an insightful panel discussion with Chandan Pani, CISO - LTIMindtree and Ashish Tandon, Founder & CEO – Indusface, as we explore the multifaceted role of compliance in securing modern enterprises.

Discussion points

The Role of Compliance
The Alphabet Soup of Compliance
Compliance
SaaS and Compliance
Indusface's Approach to Compliance

More like this

Microsoft, DOJ Dismantle Domains Used by Russian FSB-Linked Hacking Group

Microsoft and the U.S. Department of Justice (DOJ) have successfully dismantled a network of...

Linux Malware perfctl Attacking Millions of Linux Servers

Researchers have uncovered a sophisticated Linux malware, dubbed "perfctl," actively targeting millions of Linux...

Northern Ireland Police to Pay £750,000 Fine Following Data Breach

The Police Service of Northern Ireland (PSNI) has been ordered to pay a £750,000...