Playstore is not safe

[Byakuga]

We can't trust apps from playstore anymore,100s of apps from play store are infected with malwares and keyloggers,do not download apps from play store anymore,if you need any app badly find their website and download from original source, beware
What most of these apps do is uploading users data to their own servers which can result in stealing your wallet keys too

[bitmover]

You shouldn't download shitty software from any source.

Look for good publishers, double check their official website to be sure you are downloading the correct app (and not some phishing version)

These are like basic procedures, safe habits to have online.

If you download any shady software you see , that is promising something too good to be true or piracy software, you will probably get infected by malware.

There are some safer ways to piracy software, but not on play store.

[bob123]

We can't trust apps from playstore anymore

That's nothing new.
You should have never blindly trusted them at all.

100s of apps from play store are infected with malwares and keyloggers,do not download apps from play store anymore,if you need any app badly find their website and download from original source,

Unfortunately quite a lot of apps are not open source.
And downloading it from a website is even more risky than using the playstore.

The playstore is somewhat moderated. Malware is going to be removed once recognized.
On a website, everyone is free to host whatever he wants to.

What most of these apps do is uploading users data to their own servers which can result in stealing your wallet keys too

No. That's simply wrong.

An application on your mobile can only access its own app data.
If you grant file system permission, it additionally can access the external memory (i.e. SD card).

Application encapsulation is a security mechanisms of android which ensures that each application can only run commands and access files in its own user context.

Well.. except if you root your mobile, which you should never do at all if you store sensitive information on your mobile.


Please don't spread misinformation.

[stompix]

We can't trust apps from playstore anymore,100s of apps from play store are infected with malwares and keyloggers

You could never trust 100% all the apps in the playstore, nothing new here.

,if you need any app badly find their website and download from original source, beware

Not really, you should first check who is the one that is creating that app.
If the app in playstore is full of malware it means that the one on their servers is also.
Do you think that a mining app that promises 1BTC per hour downloaded from the original website is safe?

Besides, a lot of trusted apps I've used for years can't be downloaded from their official site and link to the store.

Also, if you don't trust play store, how do you manage your updates for the apps? You uninstall and install the fresh copy from the original website each time there is an update?

What most of these apps do is uploading users data to their own servers which can result in stealing your wallet keys too

Again, overreacting, most apps are safe as long as you don't go and install apps that make fake claims such as free gift cards, free money, micro earnings and others.
It doesn't hurt to be extra careful but if go full paranoia mode you're better sticking to the old faithful Nokia 3310.


LE:
While doublecking to see if you don't have the habit of only starting topics and then disappear I saw this post of yours:

Eidoo wallet is not bad and if I have to compare eidoo with other new wallets like atomic wallet I will choose eidoo because of better stability but myether wallet is better choice

Eidoo does the same thing I said above, they don't offer a download version they link to the store.
So, how did you managed to install it? 

[Upgrade00]

if you need any app badly find their website and download from original source, beware

The website may also be compromised and is not an assurance that the app is safe.
Do not allow apps direct permissions into your personal files.
Have an updated virus/malware protection software.
Verify any app you download from ANY source.

[o_e_l_e_o]

Best practice is to not store crypto on devices you are using day-to-day. There are countless malicious phone apps and computer programs, scam websites, shady emails, etc. You should be using separate and clean devices for your crypto usage, not the same computer you use to download email attachments and visit porn sites, and not the same phone you use to download silly games or messaging apps.

I do use a mobile wallet on my phone for small amounts of day-to-day crypto, but I am fully aware that it is a highly risky environment compared to my cold storage. I also store the crypto wallet inside a separate encrypted section on my phone's memory.

[DdmrDdmr]

A recent study by the University of Sydney (Faculty of Engineering's School of Computer Science and Data61-CSIRO) determined that, out of the 1M+ apps investigated on the Google Play Store (out of around 2,6M apps), 2040 of them were likely counterfeit, with the potential of stealing data from your device.

The proportion is small by comparison, but it only takes one of them to be popular and installed by you in order to be compromised to some degree. I haven't been able to see the full report (you need to pay for it), but it would be interesting to see what those 2040 apps amount to in terms of downloads, as well as a breakdown by category (both of usage and by vulnerability type).

(see https://sydney.edu.au/news-opinion/news/2019/06/24/over-2-000-fake-android-apps-discovered.html)

[TheBeardedBaby]

A recent study by the University of Sydney (Faculty of Engineering's School of Computer Science and Data61-CSIRO) determined that, out of the 1M+ apps investigated on the Google Play Store (out of around 2,6M apps), 2040 of them were likely counterfeit, with the potential of stealing data from your device.

The proportion is small by comparison, but it only takes one of them to be popular and installed by you in order to be compromised to some degree. I haven't been able to see the full report (you need to pay for it), but it would be interesting to see what those 2040 apps amount to in terms of downloads, as well as a breakdown by category (both of usage and by vulnerability type).

(see https://sydney.edu.au/news-opinion/news/2019/06/24/over-2-000-fake-android-apps-discovered.html)

Unfortunately if you get yourself "conaminated" with any of those malwares out there, no matter what app you have installed it will be infected.

~
New Malware Replaced Legit Android Apps With Fake Ones On 25 Million Devices^new
Added> 12.07.19
~

BTW we managed to take down a fake Core wallet off the Androind Play Store so there is kind of a control what is published. https://bitcointalk.org/index.php?topic=5161847.0

[RapTarX]

No matter from where you download it, if you don't download a reputed and authorized app, you may have been hacked. One of my youtube channels was hacked along with its associated email, the recovery email was changed as well. When I tried to recover my email, it was asking me to have a code on the recovered email which the hacker set. Later, I researched with that email to find out who the hacker is because the address was a little known to me. Found that it was one of email from one of my app I used on my phone long ago.

[mk4]

Downloading apps outside of the Google PlayStore is no different, or actually possibly a lot worse(privacy concerns aside). If you download your apps outside the Google PlayStore, you could still download fraudulent apps if you don't do your research, which you should do in the first place when downloading from the Google PlayStore. You simply shouldn't just download apps randomly.

[elda34b]

Google and other apps store should increase their scrutiny for new apps from unverified developers. They have that power so they should use it to protect their users. Or make everything open source so anyone can take a look at the code themselves from the playstore directly.

[boyptc]

I occassionally download apps that I needed from playstore and even online but I'm very certain of what to download.

I don't download apps randomly just because I think that it's good to download. Verify the source, authors and as much as possible check it from the company itself if that's the actual app they had just to be sure of it.

[Sourhearrt]

I've stopped downloading apps from play store since a year now after my phone was infected with a malware that almost ruin my smartphone life,I won't advice anyone to keep private keys or bank account info on smartphone

[bob123]

A recent study by the University of Sydney (Faculty of Engineering's School of Computer Science and Data61-CSIRO) determined that, out of the 1M+ apps investigated on the Google Play Store (out of around 2,6M apps), 2040 of them were likely counterfeit, with the potential of stealing data from your device.

The proportion is small by comparison, [...]

The study only talks about fake application, but not about malware infected applications itself.
While it stands to reasn that every of this faked application contains malware, there are for sure multiple others (for example popular original games, which have malware included).

Recently about 10 apps have been removed, with more than 1M+ downloads, because of malware.
This wasn't real dangerous malware, but adware (it nested itself into other applications and showed custom advertisements), with the ability to download further code to execute - which hasn't been used yet.


I am sure that the number of infected applications is way higher than the number quoted from a study concentrating on counterfeit applications.

[EidooTeam]

Eidoo does the same thing I said above, they don't offer a download version they link to the store.
So, how did you managed to install it? 

If you don't feel comfortable with the mobile version (that obviously is not infected with malware and keyloggers) you can download the desktop version from the site https://eidoo.io/desktop-download

[bob123]

If you don't feel comfortable with the mobile version (that obviously is not infected with malware and keyloggers) you can download the desktop version from the site https://eidoo.io/desktop-download

And that changes what exactly ?

No one implied that the google is infecting applications in their playstore.
It doesn't matter where the application is downloaded from. If the developer are not trusted, the risk is everywhere the same. Well, theoretically it is higher when not downloading from the playstore, but ignoring this fact for now.

Downloading a desktop wallet from a completely unknown site isn't safer either.

The difference is just that it is easier to create malware for desktop systems than android, with higher privileges and more access to data.

[walton687]

We can't trust apps from playstore anymore,100s of apps from play store are infected with malwares and keyloggers,do not download apps from play store anymore,if you need any app badly find their website and download from original source, beware
What most of these apps do is uploading users data to their own servers which can result in stealing your wallet keys too

Before i download something in playstore, i used to check the feedback first. If the feedback were not good then i would never download that app, and honestly, many apps in playstore lately are nonsense and are useless.

[Sourhearrt]

We can't trust apps from playstore anymore,100s of apps from play store are infected with malwares and keyloggers,do not download apps from play store anymore,if you need any app badly find their website and download from original source, beware
What most of these apps do is uploading users data to their own servers which can result in stealing your wallet keys too

Before i download something in playstore, i used to check the feedback first. If the feedback were not good then i would never download that app, and honestly, many apps in playstore lately are nonsense and are useless.

Most times the feedback on playstore are correct and some times  they are  not, scammers often do the feedbacks themselves with different accounts

[FireBallex]

If an official app source like play store is not safe anymore where is more safer to download app?this is something google play store should take action on by themselves,its their job

[ezeobulu007]

wow, i didn`t know all these i have always thought playstore is the safest place to get android apps. thanks to y`all for the advice i`ll begin to look out now.