|
|
|
|
|
|
by 1nverseMtx
2795 days ago
|
|
|
If there’s no way to check ownership any properly resigned malicious apk would still not be distinguished from a real version. According to the comments below currently the only way to notice a malicious but signed app would be updating an existing version from the play store. That requires access to the play store and installing an app from there first. Allowing random 3rd parties to publish high profile apps stolen from the Play store seems a very bad idea. Especially if the OS doesn’t check apk signature against that same play store. |
|
|