A new security alert from Google has raised serious concerns for Android users worldwide, with more than 40% of active devices now exposed to malware and spyware attacks. The warning highlights that over a billion Android phones are running software versions that no longer receive critical security updates, leaving users vulnerable with no direct path to protection.
Recent Android distribution data released by Google shows slow adoption of newer versions. Android 16 was installed on just 7.5% of devices when the data was captured in December. Android 15 accounted for 19.3%, Android 14 for 17.9% and Android 13 for 13.9%. Google no longer provides critical security fixes for Android 12 or older versions. As a result, only about 58% of Android phones remain under full security support, while more than 40% are now outside the protection window.
The situation contrasts with recent challenges faced by Apple, which is still pushing users to update to iOS 26. However, most unsupported iPhones are expected to upgrade in the coming months and the number of devices fully off support remains much smaller. Google advises Android users whose phones cannot upgrade to Android 13 or newer to seriously consider replacing their devices. A supported mid range phone is considered safer than an older premium model that no longer receives updates. Google also warned in December that new spyware campaigns were actively targeting Android devices and outdated phones remain unprotected even now.
Google said some limited safeguards still exist. “Google Play Protect, Android’s built-in malware and unwanted software protection, continues to support devices as far back as Android 7 to help keep users safe,” a company spokesperson said. “These devices still benefit from the latest Play Protect security signatures and real-time malware scanning.” The company added, “Android app security updates are managed by individual developers; they can continue to support older hardware as long as their apps maintain a version that meets Google’s current Target API requirements.” Meanwhile, manufacturers are drawing scrutiny after Samsung confirmed that Galaxy S21, S21 Plus and S21 Ultra phones no longer receive security updates, while Galaxy S22 series and S21 FE models have been shifted from monthly to quarterly updates.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream formerly known as CIO News LinkedIn Account | The Mainstream formerly known as CIO News Facebook | The Mainstream formerly known as CIO News Youtube | The Mainstream formerly known as CIO News Twitter
About us:
The Mainstream is a premier platform delivering the latest updates and informed perspectives across the technology business and cyber landscape. Built on research-driven, thought leadership and original intellectual property, The Mainstream also curates summits & conferences that convene decision makers to explore how technology reshapes industries and leadership. With a growing presence in India and globally across the Middle East, Africa, ASEAN, the USA, the UK and Australia, The Mainstream carries a vision to bring the latest happenings and insights to 8.2 billion people and to place technology at the centre of conversation for leaders navigating the future.
