Google is making Android more secure by improving the safety of sideloading, as they are introducing a rule where every app that we install must come from a verified developer.
This change follows Google’s recent analysis that there were over 50 times more malware in sideloaded apps compared to those from the Google Play Store. So, to prevent this, under this new rule, developers must prove who they are before their apps can be installed on certified Android devices.
Developers distributing only through Google Play are already covered under existing checks, but those releasing apps outside will use a new Android Developer Console for identity verification. Developer verification details can be found on the official website.
The change will start with the early access phase in October 2025, with invites sent gradually and then made open to all developers in March 2026. For now, four countries: Brazil, Indonesia, Singapore, and Thailand will see the effects starting in September 2026. After 2027, the global rollout will begin.
Google has stressed that sideloading and third-party app stores will remain allowed, but with this added protection to reduce risks. Student and hobbyist developers will also have a simplified account type to make the process easier.
Support for this new step has already come from banks, governments, and industry groups who view it as a balanced way to keep Android open yet secure. This change is helpful at stopping fake apps, scams, and malware that often spread through sideloading or third-party app stores.
