App stores code of practice proposed to protect users from malicious apps

4 May 2022, 12:44

An app store
Technology stock. Picture: PA

App stores across devices would be required to boost security standards to better protect consumers under proposed new rules.

App stores on smartphones, games consoles, TVs and other devices could be asked to commit to a new code of practice setting out baseline security requirements, under new proposals put forward by the Government.

The Department for Digital, Culture, Media and Sport (DCMS) has asked for views from the tech sector on the plans.

They propose placing new security and privacy requirements on app developers as well as app stores, including compelling stores to have a vulnerability reporting process for every app and requiring more transparency from apps as to why they want access to personal information such as contact lists or a user’s location.

The plans come in response to a report from the National Cyber Security Centre (NCSC), which warns that personal data and finances are at risk because of fraudulent apps containing malicious software or poorly-developed apps which can be compromised by hackers.

DCMS said that despite the UK app market being worth £18.6 billion, there are few rules governing the security around the apps and the stores which host them – although all the major app stores do have their own terms of service and content rules.

“Apps on our smartphones and tablets have improved our lives immensely – making it easier to bank and shop online and stay connected with friends,” cyber security minister Julia Lopez said.

“But no app should put our money and data at risk. That’s why the Government is taking action to ensure app stores and developers raise their security standards and better protect UK consumers in the digital age.”

The NCSC said the proposed code of practice would help reduce the risk of malicious apps reaching consumers.

“Our devices and the apps that make them useful are increasingly essential to people and businesses and app stores have a responsibility to protect users and maintain their trust,” NCSC technical director Dr Ian Levy said.

“Our threat report shows there is more for app stores to do, with cybercriminals currently using weaknesses in app stores on all types of connected devices to cause harm.

“I support the proposed code of practice, which demonstrates the UK’s continued intent to fix systemic cybersecurity issues.”

DCMS said its call for views would be open until the end of June, with a response to the feedback then published later this year.

By Press Association

More Technology News

See more More Technology News

Glastonbury Festival 2022

Glastonbury 2022 broke data records, EE says

A child using a laptop computer

Pupils ‘AirDrop nudes in maths and use Google Drive to store images’, MPs told

Over 20 million US dollars were raised by the public for drones to fight the Russian invasion

Tech company to gift Bayraktar drones to Ukraine after millions raised by public

A mixed reality holographic patient

UK medical students training on hologram patients in world-first


Warning new internet laws will hand ministers ‘unprecedented’ powers

A battery changing station of Nio brand electrical car (Alamy)

Two dead after Nio electric car they were testing ‘falls from building’

Alexa to expand

Amazon’s Alexa could mimic the voices of dead relatives

Ai-Da at work

Robot painting Glastonbury’s famous faces says festival atmosphere is ‘electric’

Instagram's new age verification tools, which have started being testing in the US

Instagram begins testing new age verification tools

A security surveillance camera is seen near the Microsoft office building in Beijing

Microsoft: Russian cyber spying targets 42 Ukraine allies

Social media apps on a smartphone

Meta removes ‘large numbers’ of upskirting images found on Facebook

Rio Ferdinand poses for photographs with children at 10 Downing Street to celebrate the launch of the Diana Award’s annual anti-bullying campaign Don’t Face It Alone (Stefan Rousseau/PA)

Rio Ferdinand calls for new ‘inspiring’ online platform to combat child bullying

A screenshot of the Microsoft Outlook email service

Microsoft’s Outlook email service hit by outage

Elon Musk

Elon Musk’s proposed £35.8bn Twitter deal gets board endorsement

Apple unveils new products

Guide Dogs launches scheme to provide free iPads to children with sight loss

A woman using a laptop

Cloudflare outage knocks hundreds of websites offline