Verified Bank Calls: How Android Now Knows Who’s Really Calling
One of the most impactful new phone security features is verified bank calls, designed to stop scammers impersonating financial institutions. When a call claims to be from your bank, Android now checks it in real time against the official banking app installed on your device. If the bank’s systems report that no call is being made from that number, Android 17 can automatically terminate the call before the scammer speaks. Banks can also flag certain lines as inbound-only, so any fake outgoing calls pretending to come from those numbers get blocked instantly. This feature is rolling out first with partners like Revolut, Itaú and Nubank on Android 11 and newer, with broader support to follow. For users, this means fewer dangerous conversations and a stronger first line of defence against fraud that currently fuels around USD 980 million (approx. RM4.6 billion) in annual losses worldwide.
Android 17 Theft Protection: What Happens When Your Phone Is Stolen
Android 17 theft protection focuses on what happens after someone grabs your phone. The Find Hub “Mark as lost” feature now requires biometric authentication, not just a PIN or password, to regain access. That matters if a thief has seen or stolen your passcode. Once you mark a device as lost, Android hides Quick Settings and blocks new Wi‑Fi and Bluetooth connections, making it harder for thieves to disable tracking or connect to other devices. Google is also expanding default-on theft protections to new Android 17 phones and freshly reset or upgraded devices, tightening limits on failed PIN attempts and adding longer delays between unlock tries to slow brute-force attacks. Together, these changes make it more difficult for attackers to bypass locks, perform SIM swaps, or quickly resell compromised devices, giving you more time to track, lock, or wipe your phone remotely.
Scam Call Blocking and Live Threat Detection with On‑Device AI
Beyond verified bank calls, Android 17 includes a smarter scam call blocker and upgraded Live Threat Detection. Using on-device AI, the system watches for suspicious app behaviour without sending your data to the cloud, checking for patterns like secretly forwarding SMS messages, abusing accessibility permissions, or creating malicious overlays. Dynamic signal monitoring lets Android respond to new threats in real time by updating protection rules on the fly. For Chrome on Android, Safe Browsing can now scan APK files for known malware before you install them, adding another checkpoint against risky apps. These features all run locally, so app monitoring and scam detection happen on your device itself. The result is a more proactive defence against fraud, where Android can block or warn about dangerous calls and apps before they cause damage, while still preserving your privacy by keeping security analysis on-device.
OTP Hiding and Stronger Privacy for Messages and Location
Android 17 also shores up privacy in everyday use, especially around one-time passwords (OTPs) that scammers frequently target. OTP hiding helps ensure sensitive codes aren’t easily exposed during calls or through message overlays, reducing the risk that malicious apps or social engineering tricks can intercept them. At the same time, Android is adding a temporary precise-location button so you can grant exact location only while an app is open, ideal for quick tasks like finding nearby services. A new location indicator will appear prominently whenever an app accesses your location, similar to existing camera and microphone indicators. A redesigned contact picker lets you share only specific contacts or limited fields instead of your entire address book. Together, these privacy-focused phone security features make it harder for fraudulent apps and callers to gather the data they need to execute successful scams.
Spyware Detection and Intrusion Logging for High‑Risk Users
For people worried about spyware and targeted surveillance, Android 17 and recent updates introduce new spyware detection and forensic tools. Live Threat Detection now flags apps that hide their icons, run quietly in the background or misuse permissions before launching malicious activity. A key addition is Intrusion Logging, part of Android’s Advanced Protection Mode. This feature creates encrypted forensic logs capturing signs of compromise, such as suspicious app installs, unusual server connections or attempts to tamper with system logs. These records can help security teams or trusted experts investigate whether a device has been infiltrated by spyware without exposing sensitive user data. Intrusion Logging is rolling out to devices running the Android 16 December update and newer, giving high-risk users like journalists, activists and other vulnerable groups a clearer way to assess whether their phones have been compromised and to respond quickly if they have.