Category Archives: Android Blog

News and notes from the Android team

Huawei to integrate Android Messages across their Android smartphone portfolio

Over the coming months, Huawei will make it even easier for hundreds of millions of people to express themselves via mobile messaging by integrating Android Messages, powered by RCS, across their Android smartphone portfolio.

With Android Messages and RCS messaging, Huawei devices will now offer a richer native messaging and communications experience. Features such as texting over Wi-Fi, rich media sharing, group chats, and typing indicators will now be a default part of the device. Messages from businesses will also be upgraded on Huawei’s devices through RCS business messaging. And Huawei users will be able to make video calls directly from Android Messages through carrier ViLTE and Google Duo.

In addition, to help carriers accelerate deployment of RCS messaging across their networks, we’re collaborating with Huawei to offer the Jibe RCS cloud and hub solution to current and prospective carrier partners, as part of an integrated solution with Huawei's current infrastructure. This will enable a faster process for RCS services so more subscribers can get access to RCS messaging.

Huawei will begin integrating Android Messages across their portfolio in the coming months. For more information, see the following release.

Source: Android


New devices and more: what’s in store for the Google Assistant this year

The Google Assistant is your personal Google. It lets you have a conversation and ask about everything under the sun and, best of all, it’s available wherever you need help—at home or on the go. Over the past year, we've been working to bring the Assistant to more devices in more places and now it's available on more than 400 million devices.

Tuesday marks the start of the Consumer Electronics Show in Las Vegas, NV, and we'll be there to showcase some of the exciting stuff we have in store for 2018. So if you’re at CES, stop on by the Google Assistant Playground (Central Plaza-21). Here we go!

At home

The Google Assistant gives you an easy, hands-free way to control your home, whether it’s helping you dim the lights from the comfort of your couch or play your dinner party playlist. It's already lending a helping hand in speakers like Google Home, Mini and Max. In fact, we’ve sold more than one Google Home every second since Google Home Mini started shipping in October. And with so much excitement around speakers, we’re making the Assistant even more available—this week we’re announcing that the Assistant is coming to new voice-activated speakers from Altec Lansing, Anker Innovations, Bang & Olufsen, Braven, iHome, JBL, Jensen, LG, Klipsch, Knit Audio, Memorex, RIVA Audio and SōLIS.

But there are also moments when a screen would make the Assistant even more helpful, like when you need to learn how to cut a pineapple, and the best way is to watch a video. Today, we're announcing that the Assistant is coming to smart displays. These new devices have the Google Assistant built in, and with the added benefit of a touch screen, they can help you get even more done. You can watch videos from YouTube, video call with Google Duo, find photos from Google Photos and more. You can also get recommendations for your favorite content, right on the home screen.

Starting later this year, the Assistant is coming to new smart displays from four companies, including JBL, Lenovo, LG and Sony. To learn more about how smart displays were built, visit the Android Developers blog.

Assistant on smart display

Last year we brought the Assistant to Android TV devices including NVIDIA's SHIELD TV and Sony’s Android TVs, so you can find the latest blockbuster, stock up on snacks with Google Express and set the perfect movie watching mood lighting. We will continue to roll out the Assistant to existing Android TVs such as AirTV Player, Bouygues Telecom, LG U+, TCL, Skyworth and Xiaomi. And, this week, Changhong, Element, Funai, Haier, Hisense and Westinghouse are announcing new Android TVs with the Google Assistant. Plus, we've worked closely with LG to integrate the Assistant into the new line of LG TVs in the coming months.

And, across all your devices, the Google Assistant is making your home even smarter. The Assistant now works with over 225 home control brands and more than 1,500 devices, including a bunch of new ones from Abode, Crestron, Gourmia, Insteon, Kohler and Yonomi. With these integrations, millions of new smart home devices are being connected to the Assistant every month, so you can stay in control, whether you want to heat up the house, check on the laundry or make sure you locked the back door.

On your phone and headphones

The Google Assistant is available on your Android phone, iPhone, and headphones, helping you when you're on the go. And this week we're announcing that over the coming year, more headphones are on the way from Jaybird, JBL, LG and Sony. These headphones are optimized for the Google Assistant; once you pair them to your phone, you can talk to the Assistant instantly with just the touch of an earbud, whether you want to skip a track to hear the next song, get notifications, or hear and respond to your messages.

In your car

The Assistant can also help you in the car, so that you can keep your hands on the wheel and eyes on the road. Starting this week in the U.S., the Assistant is coming to Android Auto.

Android Auto is available in tens of millions of cars on more than 400 models from 40+ brands, including Ford, General Motors, Nissan, Volkswagen and Volvo. With the Assistant in Android Auto, you can listen to your playlists from apps like Spotify or Google Play Music, get quick directions from Google Maps or Waze, and send or receive messages from services like WhatsApp. And soon, you’ll be able to reserve a parking space with SpotHero or order your favorite handcrafted drink or food from Starbucks—all from the road.

Assistant on Android auto

You can use the Assistant in Android Auto on your car display by connecting your Android phone to a supported car—or you can use it on your phone screen in any car. And we're working with auto makers to integrate the Assistant directly into their cars—no phone required.

With the Assistant on your phone, speaker or TV, you can also check your fuel level, lock doors, and more. This feature is already available on cars from BMW, Mercedes-Benz and Hyundai—and today we're announcing that it'll be coming to cars from Kia and Fiat Chrysler Automobiles.

Always ready to help

Since the Assistant can do so many things, we're introducing a new way to talk about them. We’re calling them Actions. Actions include features built by Google—like directions on Google Maps—and those that come from developers, publishers and other third parties, like working out with Fitbit Coach. So finding photos with Google Photos would be one Action while meditating with Headspace would be another. All in all, today there are more than a million Actions you can take with your Assistant.

To help you discover the Actions available on the Assistant, we have a new directory page. You can also explore them with your Assistant on your Android phone or iPhone —just go to your Assistant, select the blue icon in the corner and dive in. And we bet you’ll find a few gems you never knew the Assistant could do. And the best part? We're always adding more Actions.

Actions

That’s our news for the day. We’re just a few days into the new year and continuing to make the Assistant more helpful and more available, no matter what device you’re using. We can’t wait to see what you do with the Assistant this year.

Source: Android


Introducing Android Oreo (Go edition) with the release of Android 8.1

Since Android’s creation, our mission has been to bring the power of computing to everyone. As a global operating system, Android has grown to more than 2 billion active devices around the world, with more users in India than the U.S.


To make sure billions more people can get access to computing, it’s important that entry-level devices are fully functioning smartphones that can browse the web and use apps. At Google I/O this year, we gave an early look at a project we called “Android Go” to make this possible. We’re excited to announce that this software experience—Android Oreo (Go edition)—is ready, and launching as a part of the Android 8.1 release tomorrow.


Android Oreo devices with 512MB to 1GB of memory will come with the all the Go optimizations. This Android Oreo (Go edition) experience is made up of three key components:

  • Operating System: Performance and storage improvements to the OS with data management features and security benefits built-in.

  • Google Apps: A new set of Google apps, designed to be lighter and relevant to the unique needs of people who are coming online for the first time.

  • Google Play Store: A tuned version of the Google Play Store that allows you to download any app, but also highlights the apps designed to work best on your device.

Go big with faster performance, more storage, data management, and security

We enhanced Android Oreo (Go edition) for speed and reliability on entry-level devices, which means the average app is now 15 percent faster on devices running Android Oreo (Go edition). There are many of these kinds of optimizations—and they really add up. If all entry level Android devices launched apps 15 percent faster, that would save the world a cumulative one million hours of time—every day!


It’s common for entry level devices to have very little storage space available once you account for the size of the OS and the preinstalled apps. This can be frustrating for people who want more space for their music, apps, and photos. So, we’ve optimized Android Oreo (Go edition) and enhanced our preinstalled Google apps to take up 50 percent less space. The net result is that we’ve doubled the amount of available storage on entry-level devices.


Android Go storage savings

Devices running Android Oreo (Go edition) also come with Google’s data saver features turned on by default. For example, Data Saver in Chrome saves the average user more than 600MB of data per year. You can also manage which apps can use background data with our built-in data saver feature, giving you more control over how your data is used.


Android Oreo is the most secure version of Android yet, so when you buy an Android Oreo (Go edition) device, you’ll be getting all the same security features. And of course all devices with Android Oreo (Go edition) get Google Play Protect built-in. Google Play Protect continuously works to keep your device, data and apps safe. It scans your app installs, even when you’re offline, no matter where you downloaded them from.


Go with Google

We’ve redesigned many of our popular Google apps to address local needs. Preinstalled on Android Oreo (Go edition) devices, this set of optimized apps includes Google Go, Google Assistant Go, YouTube Go, Google Maps Go, Gmail Go, Gboard, Google Play, Chrome, and the new Files Go app by Google.


With our new and reimagined Google apps, we’ve focused on making them not only smaller, but smooth and fast too. For example, Google Go—a new app to find the information you want—optimizes data by up to 40 percent, weighs less than 5MB in size, and makes it faster to find popular and trending information with a simple, tappable interface. And with the Google Assistant for Android (Go edition), you can quickly send messages, make calls, set alarms, and more with your voice and a single touch of the screen.


Our storage-saving features extend beyond the OS to a new file-management app by Google—Files Go—which helps you clean up space and stay organized. Whether it’s recommendations for removing spam, duplicate images or unused apps from your phone, Files Go is the perfect complement to the storage-maximizing features of Android Oreo (Go edition).

Go Play

Go Play

In the Play Store, you can download any app, and we’ve also created a new section that recommends popular apps that are tuned to run well on entry-level devices. 

We’ve have been thrilled to see that many of our partners are using our building for billions guidelines to either optimize their existing app or create a new app to run well on entry-level devices, in the hopes of bringing their experiences to billions of new smartphone users.

Ready. Set. Go.

With the launch of Android Oreo (Go edition) in Android 8.1, partners will soon be able to ship this new release on their entry-level devices around the world. We can’t wait for our partners’ devices to hit shelves in the coming months.


And if you’re a developer, let's build for the next billion together.

Source: Android


Android Pay goes local in Ukraine, Czech Republic, Brazil and Slovakia

Whenever we launch Android Pay in a new market, we think about how to enable faster, easier checkout while taking into account the distinct payment habits of each place. Working with partners is a key part of creating a local experience.


A few weeks ago, we launched Android Pay in Ukraine. Today, it’s available in Czech Republic and Brazil, and soon it’ll be live in Slovakia, too. Here’s a look at how two different approaches simplify checkout in two unique parts of the world.


Leave your wallet at home in Central and Eastern Europe

Paying contactless isn’t new in Central and Eastern Europe–in fact, in many places it’s the norm. With Android Pay, we wanted to make it easier for locals to leave their wallets at home at places they know and love. Starting today in Czech Republic, you can pick up a loaf of traditional Šumava bread at your favorite bakery or an ice-cold Kofola at Albert using nothing but your phone.
Kiev_metro
Oleksandr Danylyuk, Ukraine’s Finance Minister, demonstrating Android Pay at the launch event

And in a region full of Android fans, we’re excited to see it’s already taking off! Ukraine’s Finance Minister Oleksandr Danylyuk was the country’s first person to try Android Pay when we launched on November 1, demonstrating how it works on the Kiev Metro.


Pay for pão de queijo with your phone in Brazil

On the other side of the globe in Brazil, contactless payments are just picking up speed. So we partnered with merchants like Ipiranga and Casa do Pão de Queijo to help us merge new experiences (like paying with your phone) with familiar ones (like buying groceries or Brigadeiros). Brazil is also the first Latin American country to get Android Pay, and we're looking forward to helping contactless payments become part of people's everyday routines.

br_hero

We’ll be bringing Android Pay to even more places soon.

Source: Android


Unlock your superpowers with Android Pay and Justice League

If you use Android Pay today, you’re in for a surprise. Like our beloved animations of space explorers, Halloween haunts, and Wimbledon players in the past, five of our Android bots have channeled their superpowers to become Justice League Super Heroes in celebration of the movie. Starting in the next few days through December 31, you can see them sprint, soar, and fight to defend the planet when you pay with your phone.


How did these heroic characters make their way into the app? It began back in 2016, when the Android Pay team designed an animation–an Android bot dressed up as a space explorer–to surprise our fans. This little space traveler sparked so much delight that the team created more, drawing inspiration from Diwali, Halloween and Chinese New Year, among other celebrations.

Justice_1

So far, these charming bots have always been fleeting, but our fans liked them so much we wanted to find a way to let you keep them beyond the checkout line. And with these action-packed animations, you can do just that–by collecting them in your app after you pay in stores. Here’s how it works.

justice_2

1. Pay in stores with Android Pay

Make sure you’ve downloaded the latest version of the Android Pay app and added a credit or debit card. Then you’ll have the chance to collect Batman, Wonder Woman, The Flash, Cyborg or Aquaman when you pay in stores–you won’t know who until you try.


2. Unite the Justice League

Keep using Android Pay to recruit all the characters. You can see how you’re doing in the app.  


3. Share with friends and family

You can’t save the world alone! Tap on your bots to share them with friends and family–and invite them to join in.


Ready to unlock your superpowers? You'll find them starting in the next few days in the following countries: United States, United Kingdom, Australia, Poland, Russia, Canada, Spain, Taiwan, Hong Kong, and Singapore.



JUSTICE LEAGUE © 2017 Warner Bros. Ent. All Rights Reserved TM & © DC Comics

Source: Android


Welcome HTC to the Android One family

Android One took some important steps two months ago in an effort to give people a fresh, secure software experience designed by Google on more high quality devices. In a short amount of time, our partners have already announced some amazing phones, including the Xiaomi Mi A1 and Android One moto x4 on Project Fi.

Today, HTC is joining the Android One family with their HTC U11 life. Designed with the latest touch interactions, a powerful camera, and immersive audio experience, here’s a closer look at what you’ll get with the Android One version of the new phone.

  • Smarts: All Android One devices and are optimized for the Google Assistant, meaning you can get help simply by saying “Ok Google” or long pressing on the home button. With the Android One HTC U11 life, we’ve taken this one step farther; you can now launch the Google Assistant with a squeeze of your phone, thanks to HTC’s Edge Sense technology. With HTC U11 life, you can take a selfie, look up directions, manage your tasks on the go and more with just a squeeze.

  • Fresh and secure: This is the first Android One phone to launch with Android Oreo. This means the HTC U11 life is more powerful than ever, with minimized background activity for your battery to last longer, or even do two things at once with Picture-in-Picture. Android One phones are guaranteed to stay fresh over time, and are among the most secure with monthly security updates and built-in malware protection with Google Play Protect. Moreover,  the HTC U11 life will receive an upgrade to Android P when available.

  • Powerful camera: Take faster, clearer photos and HDR Boost on the 16MP main camera, even in low light. Google Photos will be the default gallery on this device, giving you free and unlimited storage of your photos and videos at high quality.

The Android One version of the HTC U11 life will launch first in Germany in Media Markt stores and on Amazon.de. We look forward to bringing this device to other countries in Europe and Asia Pacific later this year and into in 2018.

Source: Android


Making Android better for kids and families

We spend a lot of time thinking about how to make Android work for everyone. Whether it’s giving people their choice of device, or helping app developers make their apps more accessible, we think Android is at its best when more people have access to the power of mobile technology. And that includes kids. Kids are the most curious among us, and technology can be an avenue for them to express their creativity and to help them learn—whether they’re doing research for a school report, learning to string together a few chords on a guitar, or just playing their favorite games. At the same time, we want parents and kids to navigate technology together in a way that makes sense for their family.


Today, we’re happy to announce that Family Link, our solution for bringing kids and their parents into the Android ecosystem, is now available to parents in the United States without an invitation. Parents can also create a Google Account for their kid right from Android setup, and then manage their kid’s account and device with Family Link.


This is the next step in our journey, but we’re far from done. We’ve been humbled by the response from those who have already been using Family Link, and want to say thank you. We appreciate the positive pieces of feedback, as well as the many feature requests, and will continue to listen to your feedback as the product evolves.

Unicorn2

Getting started with Family Link


When you're setting up your kid's Android device (see available devices), Google asks you to create an account. Enter your kid’s birthday, and if they’re under 13, you’ll be asked to provide consent to create the account. Once that's done, Family Link will automatically be downloaded to your kid's device, and you can choose the apps and settings that you want for your child. Once your kid’s device is setup, download Family Link on your own device, and you can use it to do things like:


  • Manage the apps your kid can use: Approve or block the apps your kid wants to download from the Google Play Store.

  • Keep an eye on screen time: See how much time your kid spends on their favorite apps with weekly or monthly activity reports, and set daily screen time limits for their device.

  • Set device bedtime: Remotely lock your kid’s device when it’s time to play, study, or sleep.


Family Link can help you set certain digital ground rules that work for your family, whether you’re occasionally checking in on your kid’s device activity, or locking their device every day before dinner time.


If you have questions about setting up an account for your kid or using Family Link, check out our Help Center.

Source: Android


Project Fi welcomes Android One, with the moto x4

With Project Fi, we set out to make your wireless experience fast, easy and fair—with access to three national 4G LTE networks, and international roaming at no extra cost. But many of you have asked us for more options for high quality, affordable devices that work with Project Fi. We've heard you and we're excited to launch our newest phone for Project Fi: the Android One moto x4.

We took some important steps with Android One earlier this month by expanding the program to bring a fresh, secure software experience designed by Google to more high-quality devices no matter the price point. The launch of Android One moto x4 on Project Fi is the next step in our commitment to work with more partners and expand Android One to new places.



Packed with a pure Android experience, advanced hardware and great network connectivity, here’s a closer look at what you’ll get with the new Android One moto x4.

Best-in-class software experience designed by Google

Like all Android One phones, Android One moto x4 runs a pure Android experience, with a clean software design and a carefully curated set of preinstalled apps to give you just what you need. For example, it comes optimized for the Google Assistant to help you get more done, and offers high-quality video calling with Google Duo. You’ll also get access to the latest updates from Android, such as Android Oreo before the end of the year. Android One moto x4 will be among the first to receive an upgrade to Android P.


Powerful cameras and unlimited high-quality photo storage

The Android One moto x4 comes with three cameras. A 12MP + 8MP dual rear camera system lets you capture wide-angle photos and detailed portraits. The front-facing camera comes packed with 16MP and an adaptive low light mode. And with free high quality storage from Google Photos, you never have to worry about running out of space.


All day battery and ultra-fast charging

Power through the day and enjoy your favorite Android software features like battery saver. When you need to recharge, TurboPower™ charging makes it ultra fast: You can get up to six hours of power in just 15 minutes.


Top of the line security

The Android One moto x4 will receive timely security updates and built-in malware protection from Google Play Protect, working around the clock to keep your device, data and apps safe.


The Android One moto x4 is priced at $399, comes in Super Black and Sterling Blue, and is available only in the U.S. on Project Fi’s network. You can pre-order it on the Project Fi website starting today. If you've got an older Nexus phone and want to trade it in for a new device, we're making it easier than ever with our new trade-in program. We’ll give you up to $165 for select Nexus devices, and if you start your trade-in for an Android One moto xby October 5, you’ll earn an extra $50 Fi credit.

Source: Android


7 ways admins can help secure accounts against phishing in G Suite

We work hard to help protect your company against phishing attacks—from using machine learning, to tailoring our detection algorithms, to building features to spot previously unseen attacks. While we block as many external attacks as we can, we continue to build and offer features designed to empower IT administrators to develop strong internal defenses against phishing.

Here are seven things we recommend admins do in G Suite to better protect employee data.

1. Enforce 2-step verification

Two-step verification (2SV) is one of the best ways to prevent someone from accessing your account, even if they steal your password. In G Suite, admins have the ability to enforce 2-step verification. 2SV can reduce the risk of successful phishing attacks by asking employees for additional proof of identity when they sign in. This can be in the form of phone prompts, voice calls, mobile app notifications and more.

Image 1: phishing post

G Suite also supports user-managed security keys—easy to use hardware authenticators. Admins can choose to enforce the use of security keys to help reduce the risk of stolen credentials being used to compromise an account. The key sends an encrypted signature and works only with authorized sites. Security keys can be deployed, monitored and managed directly from within the Admin console.

2. Deploy Password Alert extension for Chrome

The Password Alert chrome extension checks each page that users visit to see if that page is impersonating Google’s sign-in page and notifies admins if users enter their G Suite credentials anywhere other than the Google sign-in page.

Admins can enforce deployment of the Password Alert Chrome extension from the Google Admin Console (Device management > App Management > Password Alert)—just sign in and get started. You should check “Force installation" under both “User Settings” and “Public session settings.”

Image 2: phishing post

Admins can also enable password alert auditing, send email alerts and enforce a password change policy when G Suite credentials have been used on a non-trusted website such as a phishing site.

3. Allow only trusted apps to access your data

Take advantage of OAuth apps whitelisting to specify which apps can access your users’ G Suite data. With this setting, users can grant access to their G Suite apps’ data only to whitelisted apps. This prevents malicious apps from tricking users into accidentally granting unauthorized access. Apps can be whitelisted by admins in the Admin console under G Suite API Permissions.

Image 3: phishing post

4. Publish a DMARC policy for your organization

To help your business avoid damage to its reputation from phishing attacks and impersonators, G Suite follows the DMARC standard. DMARC empowers domain owners to decide how Gmail and other participating email providers handle unauthenticated emails coming from your domain. By defining a policy and turning on DKIM email signing, you can ensure that emails that claim to be from your organization, are actually from you.

5. Disable POP and IMAP access for those who don’t need it

The Gmail clients (Android, iOS, Web) leverage Google Safe Browsing to incorporate anti-phishing security measures such as disabling suspicious links and attachments and displaying warnings to users to deter them from clicking on suspicious links. 

By choosing to disable POP and IMAP, admins can ensure that all G Suite users will only use Gmail clients and benefit from the built-in phishing protections that they provide. POP and IMAP access can be disabled by admins at the organizational unit level.

Note: all third-party email clients including native mobile mail clients will stop working if POP and IMAP are disabled.

Image 4: phishing post
Image 5: phishing post

6. Encourage your team to pay attention to external reply warnings

By default, Gmail clients (Android, Web) warn G Suite users if they’re responding to emails sent from outside their domain by someone they don’t regularly interact with, or from someone not in their contacts. This helps businesses protect against forged emails, from malicious actors or just plain old user-error like sending an email to the wrong contact. Educate your employees to look for these warnings and be careful before responding to unrecognized senders. Unintended external reply warnings are controlled from the Admin console control in the “Advanced Gmail” setting.

Image 6: phishing post

7. Enforce the use of Android work profiles

Work profiles allow you to separate your organization's apps from personal apps, keeping personal and corporate data separate. By using integrated device management within G Suite to enforce the use of work profiles, you can whitelist applications that access corporate data and block installation of apps from unknown sources. You now have complete control over which apps have access to your corporate data.

Image 7: phishing post

These steps can help you improve your organization’s security posture and become more resistant to phishing attacks. Learn more at gsuite.google.com/security or sign up for our security webinar on September 20, 2017 which features new security research from Forrester and a demonstration on how the cloud can help effectively combat cyber threats.

Source: Android


7 ways admins can help secure accounts against phishing in G Suite

We work hard to help protect your company against phishing attacks—from using machine learning, to tailoring our detection algorithms, to building features to spot previously unseen attacks. While we block as many external attacks as we can, we continue to build and offer features designed to empower IT administrators to develop strong internal defenses against phishing.

Here are seven things we recommend admins do in G Suite to better protect employee data.

1. Enforce 2-step verification

Two-step verification (2SV) is one of the best ways to prevent someone from accessing your account, even if they steal your password. In G Suite, admins have the ability to enforce 2-step verification. 2SV can reduce the risk of successful phishing attacks by asking employees for additional proof of identity when they sign in. This can be in the form of phone prompts, voice calls, mobile app notifications and more.

Image 1: phishing post

G Suite also supports user-managed security keys—easy to use hardware authenticators. Admins can choose to enforce the use of security keys to help reduce the risk of stolen credentials being used to compromise an account. The key sends an encrypted signature and works only with authorized sites. Security keys can be deployed, monitored and managed directly from within the Admin console.

The Key to working smarter faster and safer

2. Deploy Password Alert extension for Chrome

The Password Alert chrome extension checks each page that users visit to see if that page is impersonating Google’s sign-in page and notifies admins if users enter their G Suite credentials anywhere other than the Google sign-in page.

Admins can enforce deployment of the Password Alert Chrome extension from the Google Admin Console (Device management > App Management > Password Alert)—just sign in and get started. You should check “Force installation" under both “User Settings” and “Public session settings.”

Image 2: phishing post

Admins can also enable password alert auditing, send email alerts and enforce a password change policy when G Suite credentials have been used on a non-trusted website such as a phishing site.

3. Allow only trusted apps to access your data

Take advantage of OAuth apps whitelisting to specify which apps can access your users’ G Suite data. With this setting, users can grant access to their G Suite apps’ data only to whitelisted apps. This prevents malicious apps from tricking users into accidentally granting unauthorized access. Apps can be whitelisted by admins in the Admin console under G Suite API Permissions.

Image 3: phishing post

4. Publish a DMARC policy for your organization

To help your business avoid damage to its reputation from phishing attacks and impersonators, G Suite follows the DMARC standard. DMARC empowers domain owners to decide how Gmail and other participating email providers handle unauthenticated emails coming from your domain. By defining a policy and turning on DKIM email signing, you can ensure that emails that claim to be from your organization, are actually from you.

5. Disable third-party email client access for those who don't need it

The Gmail clients (Android, iOS, Web) leverage Google Safe Browsing to incorporate anti-phishing security measures such as disabling suspicious links and attachments and displaying warnings to users to deter them from clicking on suspicious links.


By choosing to disable POP and IMAP, Google Sync and G Suite Sync for Microsoft Outlook, admins can ensure that a significant portion of G Suite users will only use Gmail clients and benefit from the built-in phishing protections that they provide. Additional measures include enabling OAuth apps whitelisting to block third-party clients as suggested earlier in the blog.


Note: all third-party email clients, including native mobile mail clients, will stop working if the measures outlined above are implemented.

Image 4: phishing post
Image 5: phishing post

6. Encourage your team to pay attention to external reply warnings

By default, Gmail clients (Android, Web) warn G Suite users if they’re responding to emails sent from outside their domain by someone they don’t regularly interact with, or from someone not in their contacts. This helps businesses protect against forged emails, from malicious actors or just plain old user-error like sending an email to the wrong contact. Educate your employees to look for these warnings and be careful before responding to unrecognized senders. Unintended external reply warnings are controlled from the Admin console control in the “Advanced Gmail” setting.

Image 6: phishing post

7. Enforce the use of Android work profiles

Work profiles allow you to separate your organization's apps from personal apps, keeping personal and corporate data separate. By using integrated device management within G Suite to enforce the use of work profiles, you can whitelist applications that access corporate data and block installation of apps from unknown sources. You now have complete control over which apps have access to your corporate data.

Image 7: phishing post

These steps can help you improve your organization’s security posture and become more resistant to phishing attacks. Learn more at gsuite.google.com/security or sign up for our security webinar on September 20, 2017 which features new security research from Forrester and a demonstration on how the cloud can help effectively combat cyber threats.

Source: Android