Google rolls out safer sideloading system for Android apps with built-in scam protection

After resolving its long-running antitrust dispute related to the Android app ecosystem earlier this month, Google announced on Thursday that it will introduce a new method to make it easier for users to install Android apps from outside the Play Store. The company revealed additional details about a new “advanced flow” setting that allows Android users to turn off a verification requirement that would otherwise block sideloading apps.

Previously, Google had introduced a rule requiring all Android apps to be registered by verified developers before they could be installed on certified Android devices. This measure was intended to reduce risks associated with malicious software, financial scams, and the theft of personal data through apps distributed outside the Play Store.

While these safeguards have helped limit abuse, some Android users prefer having the flexibility to install apps from unverified sources, even if it involves additional risk.

With the new “advanced flow” option, users can complete a structured, one-time process to turn off these protections while still maintaining safeguards against fraudulent activity.

The process begins with enabling developer mode within Android’s system settings. This requirement is designed to avoid accidental activation and prevent the kind of quick, one-tap bypasses that scammers often exploit. Google noted that scammers frequently create a sense of urgency by using fear-based tactics, such as threatening financial loss, legal consequences, or harm to loved ones, while guiding victims through turning off security protections.

Google cited a report from the Global Anti-Scam Alliance (GASA) that found 57% of adults worldwide experienced a scam in 2025.

After developer mode is activated, users must pass a short check to confirm they are not being influenced or guided by someone else. The next step requires restarting the device and reauthenticating, which helps cut off any remote access sessions or phone calls that scammers might use to monitor the process.

Following this, a one-time 24-hour waiting period is enforced before users can complete the change. Google says this delay is meant to counter the urgency tactics often used in scams, giving users time to reconsider their decision.

Once the waiting period ends, users must verify their identity using biometric authentication, such as fingerprint or facial recognition, or by entering their device PIN.

After completing all the steps, users will be able to install apps from unverified developers outside the Play Store. They can choose to enable this setting temporarily for seven days or permanently. Even with the setting enabled, Android will still display a warning that the app is from an unverified source, though users can bypass it.

In addition to these changes, Google announced it is introducing free, limited-distribution accounts for students and hobbyist developers. These accounts will allow them to share apps with up to 20 users without going through full verification processes, such as providing government identification or paying registration fees.

These updates come after the resolution of a prolonged legal dispute between Google and Epic Games, the creator of Fortnite, over competition practices within the Play Store. As part of the settlement, Google said it would reduce its commission on in-app purchases to 20%, with an additional 5% applied if developers choose to use Google’s billing system.