Google is stepping up its fight against phone scammers with a new security feature in Android 16 Beta 2. This feature blocks users from enabling certain risky settings, like sideloading apps or granting accessibility permissions, while they are on a phone call.
The feature was first spotted by Android Authority, which also uploaded a video demonstrating how it works.
How This Feature Works
When a call is active, Android 16 Beta 2 will prevent users from:
- Enabling app sideloading – This means users cannot install apps from unknown sources during a call.
- Granting accessibility permissions – Many scams rely on tricking users into giving apps accessibility access, which can let malware take control of the device.
If a user tries to enable these settings, they will see a warning message:
“Scammers often request this type of action during phone call conversations, so it’s blocked to protect you.”
Scammers often use Telephone-Oriented Attack Delivery (TOAD) tactics. They send fake messages urging victims to call a number, then convince them to install malicious apps by walking them through the process. With AI-based voice scams becoming more advanced, these scams are only getting harder to spot.
By blocking these actions during calls, Google is making scams harder to execute. Even if scammers tell victims to hang up and try again, this extra step could make people more suspicious and stop them from proceeding.
India has a massive problem with phone scams. Most users get fake tech support calls or banking fraud calls. In these calls, scammers often impersonate government officials, bank representatives, or even relatives in distress to manipulate victims. They guide people through enabling sideloading or granting app permissions, allowing them to install malware that steals sensitive information.
With Android 16 Beta 2’s new protections, these scams will face a major roadblock. Even if victims follow a scammer’s instructions, they will be stopped by Android’s built-in security.
While this feature is a great step forward, it isn’t foolproof. Scammers might try different approaches, like Asking victims to turn on sideloading before calling them or Using social engineering to convince users to manually give permissions later. However, by making scams less seamless, Google is making it more difficult for fraudsters to succeed.
