Full Report
Posted by Lyubov Farafonova, Product Manager, Phone by Google; Alberto Pastor Nieto, Sr. Product Manager Google Messages and RCS Spam and Abuse; Vijay Pareek, Manager, Android Messaging & Chrome Extensions Security As Cybersecurity Awareness Month wraps up, we’re focusing on one of today's most pervasive digital threats: mobile scams. In the last 12 months, fraudsters have used advanced AI tools to create more convincing schemes, resulting in over $400 billion in stolen funds globally.¹ For years, Android has been on the frontlines in the battle against scammers, using the best of Google AI to build proactive, multi-layered protections that can anticipate and block scams before they reach you. Android’s scam defenses protect users around the world from over 10 billion suspected malicious calls and messages every month2. In addition, Google continuously performs safety checks to maintain the integrity of the RCS service. In the past month alone, this ongoing process blocked over 100 million suspicious numbers from using RCS, stopping potential scams before they could even be sent. To show how our scam protections work in the real world, we asked users and independent security experts to compare how well Android and iOS protect you from these threats. We're also releasing a new report that explains how modern text scams are orchestrated, helping you understand the tactics fraudsters use and how to spot them. Survey shows Android users’ confidence in scam protections Google and YouGov3 surveyed 5,000 smartphone users across the U.S., India, and Brazil about their experiences. The findings were clear: Android users reported receiving fewer scam texts and felt more confident that their device was keeping them safe. Android users were 58% more likely than iOS users to say they had not received any scam texts in the week prior to the survey. The advantage was even stronger on Pixel, where users were 96% more likely than iPhone owners to report zero scam texts. At the other end of the spectrum, iOS users were 65% more likely than Android users to report receiving three or more scam texts in a week. The difference became even more pronounced when comparing iPhone to Pixel, with iPhone users 136% more likely to say they had received a heavy volume of scam messages. Android users were 20% more likely than iOS users to describe their device’s scam protections as “very effective” or “extremely effective.” When comparing Pixel to iPhone, iPhone users were 150% more likely to say their device was not effective at all in stopping mobile fraud. YouGov study findings on users’ experience with scams on Android and iOS Security researchers and analysts highlight Android’s AI-driven safeguards against sophisticated scams In a recent evaluation by Counterpoint Research4, a global technology market research firm, Android smartphones were found to have the most AI-powered protections. The independent study compared the latest Pixel, Samsung, Motorola, and iPhone devices, and found that Android provides comprehensive AI-driven safeguards across ten key protection areas, including email protections, browsing protections, and on-device behavioral protections. By contrast, iOS offered AI-powered protections in only two categories. You can see the full comparison in the visual below. Counterpoint Research comparison of Android and iOS AI-powered protections Cybersecurity firm Leviathan Security Group conducted a funded evaluation5 of scam and fraud protection on the iPhone 17, Moto Razr+ 2025, Pixel 10 Pro, and Samsung Galaxy Z Fold 7. Their analysis found that Android smartphones, led by the Pixel 10 Pro, provide the highest level of default scam and fraud protection.Their analysis found that Android smartphones, led by the Pixel 10 Pro, provide the highest level of default scam and fraud protection.The report particularly noted Android's robust call screening, scam detection, and real-time scam warning authentication capabilities as key differentiators. Taken together, these independent expert assessments conclude that Android’s AI-driven safeguards provide more comprehensive and intelligent protection against mobile scams. Leviathan Security Group comparison of scam protections across various devices Why Android users see fewer scams Android’s proactive protections work across the platform to help you stay ahead of threats with the best of Google AI. Here’s how they work: Keeping your messages safe: Google Messages automatically filters known spam by analyzing sender reputation and message content, moving suspicious texts directly to your "spam & blocked" folder to keep them out of sight. For more complex threats, Scam Detection uses on-device AI to analyze messages from unknown senders for patterns of conversational scams (like pig butchering) and provide real-time warnings6. This helps secure your privacy while providing a robust shield against text scams. As an extra safeguard, Google Messages also helps block suspicious links in messages that are determined to be spam or scams. Combatting phone call scams: Phone by Google automatically blocks known spam calls so your phone never even rings, while Call Screen5 can answer the call on your behalf to identify fraudsters. If you answer, the protection continues with Scam Detection, which uses on-device AI to provide real-time warnings for suspicious conversational patterns6. This processing is completely ephemeral, meaning no call content is ever saved or leaves your device. Android also helps stop social engineering during the call itself by blocking high-risk actions6 like installing untrusted apps or disabling security settings, and warns you if your screen is being shared unknowingly. These safeguards are built directly into the core of Android, alongside other features like real-time app scanning in Google Play Protect and enhanced Safe Browsing in Chrome using LLMs. With Android, you can trust that you have intelligent, multi-layered protection against scams working for you. Android is always evolving to keep you one step ahead of scams In a world of evolving digital threats, you deserve to feel confident that your phone is keeping you safe. That’s why we use the best of Google AI to build intelligent protections that are always improving and work for you around the clock, so you can connect, browse, and communicate with peace of mind. See these protections in action in our new infographic and learn more about phone call scams in our 2025 Phone by Google Scam Report. 1: Data from Global Anti-Scam Alliance, October 2025 ↩ 2: This total comprises all instances where a message or call was proactively blocked or where a user was alerted to potential spam or scam activity. ↩ 3: Google/YouGov survey, July-August 2025; n=5,100 across US, IN, BR ↩ 4: Google/Counterpoint Research, “Assessing the State of AI-Powered Mobile Security”, Oct. 2025; based on comparing the Pixel 10 Pro, iPhone 17 Pro, Samsung Galaxy S25 Ultra, OnePlus 13, Motorola Razr+ 2025. Evaluation based on no-cost smartphone features enabled by default. Some features may not be available in all countries. ↩ 5. Google/Leviathan Security Group, “October 2025 Mobile Platform Security & Fraud Prevention Assessment”, Oct. 2025; based on comparing the Pixel 10 Pro, iPhone 17 Pro, Samsung Galaxy Z Fold 7 and Motorola Razr+ 2025. Evaluation based on no-cost smartphone features enabled by default. Some features may not be available in all countries. ↩ ↩ 6. Accuracy may vary. Availability varies. ↩ ↩ ↩
Analysis Summary
# Best Practices: Mobile Scam Defense and Proactive Security Hardening
## Overview
These recommendations focus on leveraging AI-driven, multi-layered defenses—primarily built into the Android ecosystem—to proactively detect, filter, and block mobile scams delivered via phone calls and messaging (SMS/RCS). The goal is to reduce user exposure to social engineering, phishing attempts, and account takeover schemes.
## Key Recommendations
### Immediate Actions
1. **Ensure Default Communication App Protections are Active:** Verify that the default messaging application (Google Messages) has automated spam filtering enabled, which relies on sender reputation and content analysis to move suspicious texts to the spam/blocked folder.
2. **Enable Real-Time Call Screening and Scam Detection:** For phone calls, ensure "Call Screen" functionality within Phone by Google is active to automatically answer unknown calls, identify fraudsters, and provide real-time warnings during active conversations.
3. **Maintain Up-to-Date Security Services:** Ensure that core security frameworks, such as Google Play Protect (for real-time app scanning) and Chrome's enhanced Safe Browsing features, are running the latest versions to benefit from up-to-date LLM-based threat intelligence.
### Short-term Improvements (1-3 months)
1. **Review and Restrict Unknown Senders:** Configure settings to minimize interactions with unknown senders. For messaging, this means relying on the automated filtering system to handle unknowns rather than manually sifting through potentially malicious messages.
2. **Educate Users on Conversational Scam Indicators:** Provide targeted training to end-users on recognizing sophisticated, conversational scams (e.g., pig butchering schemes) identified by on-device AI analysis in messaging interfaces, prompting users to heed real-time warnings.
3. **Monitor Device Security Behavior Alerts:** Establish a procedure for users to report or escalate critical security warnings related to high-risk actions prompted during calls, such as attempts to install untrusted apps or disable security settings.
### Long-term Strategy (3+ months)
1. **Standardize on AI-Enhanced Platforms (If Applicable):** When procuring or migrating mobile assets, favor platforms verified by independent research to offer comprehensive, default AI-driven safeguards across multiple security vectors (email, browsing, communication).
2. **Integrate On-Device AI Security Checks:** Leverage security mechanisms that process data ephemerally and on-device (e.g., for call content analysis) to maximize privacy while maintaining robust, real-time fraud detection capabilities, reducing reliance on cloud-based analysis for immediate warnings.
3. **Establish Continuous RCS Integrity Checks:** For organizations managing RCS services, ensure ongoing participation in or compliance with operator/provider safety checks designed to block suspicious numbers from utilizing the RCS channel entirely.
## Implementation Guidance
### For Small Organizations
- **Focus on End-User Device Hygiene:** Ensure all staff devices are configured to use stock, updated messaging and phone applications provided by the OS vendor, as these show the strongest correlation with comprehensive default protections (e.g., Google Messages and Phone by Google).
- **Phishing/Smishing Simulation:** Run simple, infrequent simulations targeting messages containing suspicious links, relying on the built-in browser/messaging safeguards to block the most obvious threats first.
### For Medium Organizations
- **Mandate System Updates:** Implement and enforce a strict patch management policy ensuring devices remain on the latest OS version to receive timely updates to AI models used for scam detection, Call Screening, and Safe Browsing.
- **Internal Security Awareness Campaigns:** Develop awareness materials focused specifically on high-volume scam vectors identified by platform security reports (e.g., social engineering during calls, complex text scams).
### For Large Enterprises
- **Comprehensive Endpoint Security Evaluation:** Conduct independent platform assessments (similar to Counterpoint/Leviathan studies referenced) during procurement cycles to benchmark the default, AI-driven security capabilities of proposed mobile operating systems and device suites.
- **Policy Enforcement for High-Risk Actions:** Develop clear Acceptable Use Policies prohibiting actions flagged by the OS as high-risk during communications (e.g., granting remote access, disabling system security features upon verbal request).
## Configuration Examples
*Note: Specific technical configurations for the internal operation of Google's proprietary AI features (like analyzing conversational patterns ephemerally) are not user-configurable settings. The guidance below focuses on enabling the features that utilize them.*
**Enabling Key Features (Conceptual Guidance):**
1. **Google Messages:** Navigate to Settings > Spam Protection and ensure "Enable spam protection" is toggled ON. Automatically blocks links deemed malicious.
2. **Phone by Google:** Access Settings > Caller ID & spam. Ensure "See caller and spam ID" is activated, and set the "Filter calls" option to block or silence suspected spam/scam calls.
3. **Chrome:** Verify Enhanced Protection mode is selected under Settings > Privacy and security > Security, leveraging Large Language Models (LLMs) for real-time phishing detection.
## Compliance Alignment
While the platform features described focus on consumer protection rather than enterprise compliance standards, leveraging these robust, AI-driven default settings supports the following principles:
* **NIST SP 800-53 (AC/SC series):** Adherence to implementing automated security monitoring and continuous validation of system integrity.
* **ISO/IEC 27001 (A.12.1.2):** Supports the implementation of operational procedures for system change control and protection against malware/unauthorized code execution (via Play Protect and Scam Detection warnings).
* **CIS Critical Security Controls (Control 8: Malware Defenses):** Utilizing platform-native, continuously updated defenses to actively block malicious content delivery.
## Common Pitfalls to Avoid
1. **Disabling Default Security Features:** Users may disable features like Call Screen or spam filtering believing them to be inconvenient, drastically reducing the multi-layered defense provided by on-device AI.
2. **Over-reliance on User Training Alone:** Assuming that manual identification training is sufficient overlooks the advanced, AI-driven detection capabilities designed to catch evolving scams that human users might miss due to social engineering pressure.
3. **Ignoring Platform Updates:** Failing to update the OS or core applications means missing critical improvements to the underlying AI models that power scam detection and behavioral anomaly warnings.
## Resources
- **Platform Documentation:** Always refer to the latest official documentation for the specific device (Pixel, Samsung, etc.) regarding the setup and operational status of their integrated security features (Call Screen, Messages spam filtering).
- **Consumer Education Guides:** Utilize reports or guides detailing modern scam orchestration tactics disseminated by security experts to better understand the context in which these automated protections operate.