Security News > 2020 > January > Privacy activists beg Google to ban un-removable bloatware from Android

For much of Android's existence, Google has adopted a relatively hands-off approach that lets manufacturers ship units with pre-installed bloatware which, in many cases, cannot be easily removed.
"Android Partners - who use the Android trademark and branding - are manufacturing devices that contain pre-installed apps that cannot be deleted, which can leave users vulnerable to their data being collected, shared and exposed without their knowledge or consent," the letter states.
The concern surrounding bloatware hinges on the fact they exist without the standard Android security model, with pre-installed apps able to access the microphone, camera, and location by default.
Presently, apps downloaded from the standard Google Play store require the user to "Opt in" to access the more sensitive parts of the phone.
The open letter also cites an academic study published in May 2019 that found 91 per cent of all pre-installed apps aren't present on the Google Play Store - suggesting they may have harmful behaviours that would preclude them from being listed on the standard Android app store.
News URL
Related news
- Google fixes Android kernel zero-day exploited in attacks (source)
- Google Patches 47 Android Security Flaws, Including Actively Exploited CVE-2024-53104 (source)
- Google patches odd Android kernel security bug amid signs of targeted exploitation (source)
- Crypto-stealing iOS, Android malware found on App Store, Google Play (source)
- Google Confirms Android SafetyCore Enables AI-Powered On-Device Content Classification (source)
- SpyLend Android malware downloaded 100,000 times from Google Play (source)
- Google's March 2025 Android Security Update Fixes Two Actively Exploited Vulnerabilities (source)
- How Google tracks Android device users before they've even opened an app (source)
- Google fixes Android zero-day exploited by Serbian authorities (source)
- Google expands Android AI scam detection to more Pixel devices (source)