History of Google Play in Timeline

Google Play is Google's digital distribution service for Android and ChromeOS devices. It acts as the official app store, allowing users to download applications developed using the Android software development kit. Beyond apps, Google Play also functions as a digital media store, offering books, movies, music, TV shows, and video games for purchase. Formerly known as the Android Market, it is a core component of the Android ecosystem.

February 13, 2009: Support for paid apps introduced

On February 13, 2009, Google Play introduced support for paid applications, initially for developers in the United States and the United Kingdom, allowing them to charge for their apps and downloads.

March 2009: Tethering apps banned, then restored with restrictions

In March 2009, reports surfaced that several tethering apps were initially banned from the Google Play Store, then restored with a new ban preventing only T-Mobile subscribers from downloading them.

September 30, 2010: Expansion of support for paid apps

On September 30, 2010, Google Play expanded support for paid applications to an additional 29 countries, broadening the availability of paid apps beyond the initial launch countries.

March 2011: In-app billing system introduced

In March 2011, Google Play introduced the in-app billing system, allowing developers to offer in-app purchases for unlocking additional functionality within their apps.

March 2011: DroidDream trojan rootkit exploit released

In March 2011, the DroidDream trojan rootkit exploit was released on the Android Market, affecting devices running Android versions earlier than 2.3 "Gingerbread". Hackers stole information and installed a backdoor on infected devices. Google removed the malicious apps, but they had already been downloaded over 50,000 times.

April 2011: Grooveshark app removed from the store

In April 2011, Google removed the Grooveshark app from the store due to unspecified policy violations, following accusations of copyright infringement. The app later returned via direct download from Grooveshark's website.

May 2011: Developer account banned

In May 2011, Google banned the account of a developer of several video game emulators for undisclosed reasons, raising questions about app store policies.

2011: RiskIQ reports increase in malicious apps

According to a 2014 research study by RiskIQ, malicious apps introduced through Google Play increased 388% between 2011 and 2013, while the number of apps removed by Google dropped from 60% in 2011 to 23% in 2013.

February 2012: Automated antivirus system introduced

In February 2012, Google introduced a new automated antivirus system called Google Bouncer to scan both new and existing apps for malware, enhancing security.

May 2012: Carrier billing introduced

In May 2012, Google began rolling out carrier billing for purchases on Google Play, allowing users to purchase content through their mobile carrier.

May 2012: In-app subscriptions introduced

In May 2012, Google introduced in-app subscriptions to Google Play, allowing developers to offer subscription-based services within their apps.

August 2012: Rumors of Google Play gift cards surface

In August 2012, rumors about Google Play gift cards started circulating online after references were discovered in the 3.8.15 version update of the Google Play Store Android app.

August 21, 2012: Google Play gift cards made official

On August 21, 2012, Google officially announced Google Play gift cards, which were rolled out over the next few weeks, providing users with a way to purchase content on the store using prepaid cards.

2012: Decoupling Android OS components for independent updates

In 2012, Google began decoupling certain aspects of its Android operating system, particularly its core applications, so they could be updated through the Google Play Store independently of the OS, allowing for quicker and more frequent updates.

2012: Trustwave bypasses Bouncer

In 2012, security firm Trustwave demonstrated at the Black Hat security conference that they could upload an application that bypassed the Bouncer blocker system. The application, which remained undetected for over two weeks, used a JavaScript exploit to steal contacts, SMS messages, and photos, and was capable of launching denial-of-service attacks.

February 2013: Patent troll lawsuit against developer Austin Meyer

In February 2013, Austin Meyer, a flight simulator game developer, was sued for patent infringement by a "patent troll" for using a copy-protection system in his app. Meyer said Google provided the system and would not assist in the lawsuit, vowing not to settle.

March 2013: Ad blocking apps pulled from the store

In March 2013, Google began pulling ad blocking apps from the Google Play Store, citing a violation of section 4.4 of the developers' agreement, which prohibits apps that interfere with servers and services.

2013: RiskIQ reports increase in malicious apps

May 2014: PayPal support added

In May 2014, Google Play added support for PayPal as a payment method, providing users with an alternative way to purchase content.

September 2014: Physical address requirement established

In September 2014, Google Play established a requirement for all developers to feature a physical address on their app's page in Google Play, enhancing transparency and accountability.

2014: RiskIQ reports increase in malicious apps

March 2015: Enhanced app checks and age-based ratings introduced

In March 2015, Google disclosed that it had begun using automated tools and human reviewers to check apps for malware and terms of service violations before they are published in the Google Play Store. At the same time, a new age-based ratings system for apps and games was rolled out, based on official ratings authorities in different regions.

April 2016: Google Play Awards announced

In April 2016, Google announced the Google Play Awards, designed to recognize the developer community and highlight notable apps and games, with nominees selected based on app quality, innovation, and recent updates.

June 2016: Patent troll lawsuit against developer Austin Meyer

In June 2016, Austin Meyer, a flight simulator game developer, uploaded a video discussing that he was being sued by a "patent troll" for uploading his app to Google Play, because the troll claimed to own the idea of the Google Play Store itself.

June 2016: Subscription revenue split changes announced

In June 2016, it was reported that Google announced changes to the revenue split for subscriptions charged through Google Play. Developers would receive 85% of revenue, and Google would take 15%, differing from the previous 70/30 split.

October 2016: New detection and filtering system introduced

In October 2016, Google announced a new detection and filtering system designed to provide 'additional enhancements to protect the integrity of the store', targeting fraudulent installs, fake reviews, and incentivized ratings.

October 2016: Password storage vulnerabilities found in privacy apps

In October 2016, Jon Sawyer tested top privacy apps on Google Play and found significant errors in password handling in "Hide Pictures Keep Safe Vault" and "Private Photo Vault". He commented that these apps offered little real security.

November 2016: FalseGuide malware discovered in game guide apps

In April 2017, Check Point announced that the "FalseGuide" malware had been hidden inside approximately 40 "game guide" apps in Google Play. The malware gained administrator access, displayed popup ads, and launched DDoS attacks. The oldest of these malicious apps had been around since November 2016. Google removed the apps after approximately two million users had downloaded them.

2016: Increase in banned apps

In 2017, over 700,000 apps were banned from Google Play due to abusive contents; this is a 70% increase over the number of apps banned in 2016.

February 2017: Developers allowed to set sales for apps

In February 2017, Google announced that developers would be allowed to set sales for their apps, indicating the original price struck out, and featuring a banner informing users when the sale ends. Additionally, Google made changes to algorithms to promote games based on user engagement rather than just downloads, also announcing new editorial pages for 'optimal gaming experiences on Android'.

March 6, 2017: Best-selling apps, games, movies, music, and books lists released

On March 6, 2017, five years after Google Play's launch, Google released lists of the best-selling apps, games, movies, music, and books over the past five years, marking a significant milestone.

April 2017: FalseGuide malware discovered in game guide apps

In April 2017, Check Point announced that the "FalseGuide" malware had been hidden inside approximately 40 "game guide" apps in Google Play. The malware gained administrator access, displayed popup ads, and launched DDoS attacks. Google removed the apps after approximately two million users had downloaded them.

June 2017: "Android Excellence" program introduced

In June 2017, Google introduced 'Android Excellence', a new editorial program to highlight the apps deemed the highest quality by the Google Play editors, showcasing outstanding apps.

June 2017: Intrusive advertising found in 47 apps

In June 2017, researchers from Sophos found 47 apps using a third-party development library that showed intrusive advertisements on users' phones, even after the apps were closed. Google removed some of the apps after receiving reports from Sophos.

July 2017: "Peer grouping" security effort described

In July 2017, Google described a new security effort called 'peer grouping,' in which apps performing similar functionalities are grouped together and attributes compared to automatically flag suspicious apps for closer inspection.

August 2017: 500 apps removed due to malicious advertising

In August 2017, security firm Lookout discovered that 500 apps on Google Play contained a software development kit that allowed for malicious advertising and were removed. The apps had been downloaded over 100 million times and included health, weather, photo-editing, Internet radio and emoji apps.

2017: Increase in banned apps

In 2017, over 700,000 apps were banned from Google Play due to abusive contents; this is a 70% increase over the number of apps banned in 2016.

2017: Google Play Protect rebranded

In 2017, the Bouncer feature and other safety measures within the Android platform were rebranded under the umbrella name Google Play Protect, a system that regularly scans apps for threats.

January 1, 2018: Subscription transaction fee decreases after 12 months

As of January 1, 2018, the transaction fee for subscription products decreased to 15% for any subscribers developers retain after 12 paid months, matching the revenue split model used by Apple.

July 2018: Additional app categories banned

In July 2018, Google banned additional categories of apps from the Google Play Store, including those that perform cryptocurrency mining on-device, facilitate the sale of explosives, firearms, ammunition, or certain firearms accessories, are only used to present ads, contain adult content but are aimed towards children, are multiple apps with highly similar content and user experience, and are created by an automated tool, wizard service, or based on templates and submitted to Google Play by the operator of that service on behalf of other persons.

April 2019: Changes to the app review process announced

In April 2019, Google announced changes to the Google Play Store's app review process, stating that it would take several days to review app submissions from new and less-established developers, with potential delays for certain apps.

August 2019: 64-bit binaries required for new and updated apps

Since August 2019, all new and updated Google Play apps have been required to have 64-bit binaries, with some exceptions, improving performance and security.

March 2020: Malware programs discovered

In March 2020, Check Point discovered 56 apps containing the Tekya malware program that infected 1 million devices. Around the same time, Dr. Web discovered at least six apps with 700,000 total downloads containing the Android.Circle.1 program which performed click fraud, adware, and phishing attacks.

November 2020: GriftHorse malware campaign discovered

On September 29, 2021, Zimperium zLabs discovered the large-scale GriftHorse malware campaign that had been active for roughly five months, between November 2020 and April 2021. It had infected more than 10 million Android devices from over 70 countries. The malware stole hundreds of millions by subscribing victims to paid services without their knowledge via over 200 trojanized Android applications. Google removed the apps after being notified.

2020: Top apps of the year awarded

In 2020, Google Play awarded Disney+ as the top app of the year for users in the US, and SpongeBob: Krusty Cook-Off taking the honors in the gaming category, recognizing exceptional app experiences.

2020: Play Store app's UI code rewritten

In 2020, Google decided to rewrite the Play Store app's UI code using Jetpack Compose due to the existing code being over 10 years old and incurring significant tech debt.

April 2021: GriftHorse malware campaign discovered

June 2021: Google enforces region-locking on gift cards

Starting from June 2021, Google began enforcing region-locking on Google Play by preventing users from redeeming gift cards of other countries even when using VPNs, using location history tracking and device fingerprint activity data associated with the user's Google account usage history.

July 1, 2021: Malicious apps steal Facebook logins

On July 1, 2021, Dr. Web discovered malicious apps on Google Play that stole Facebook users' logins and passwords. Nine trojans with over 5.8 million installs tricked victims into logging into their Facebook accounts and hijacked the credentials via JavaScript code. Google removed these apps.

August 2021: 32-bit only apps not served to 64-bit compatible devices

Since August 2021, Google Play no longer serves apps that only have 32-bit binaries to devices compatible with 64-bit apps, encouraging developers to adopt 64-bit architecture.

September 29, 2021: GriftHorse malware campaign discovered

On September 29, 2021, Zimperium zLabs discovered the large-scale GriftHorse malware campaign that had infected more than 10 million Android devices from over 70 countries. The malware stole hundreds of millions by subscribing victims to paid services without their knowledge via over 200 trojanized Android applications. Google removed the apps after being notified.

November 30, 2021: Banking trojans distributed via malware dropper campaigns

On November 30, 2021, ThreatFabric researchers reported the discovery of four different malware dropper campaigns distributing banking trojans on the Google Play Store. These campaigns used realistic-looking apps related to fitness, cryptocurrency, QR codes, and PDF scanning to trick users into installing them. Once installed, the "dropper" apps would silently communicate with a server and perform a fake "update" to launch the banking trojan.

2022: Iranian state-supported apps deleted through Play Protect

In 2022, two Iranian state-supported ridesharing apps and three messenger apps were deleted through Play Protect for being malware and spyware, highlighting ongoing security efforts.

July 31, 2023: China UnionPay cards support added in Hong Kong and Macau

On July 31, 2023, Google Play added support for China UnionPay cards in Hong Kong and Macau, allowing users to bind UnionPay cards through the Play Store app.

2023: Strict guidelines imposed for personal loan apps

In 2023, Google imposed strict guidelines for personal loan apps on the Google Play Store from 31 May that make the customer's data vulnerable.

August 2024: Google Play gift card availability

As of August 2024, Google Play gift cards are available in numerous countries, including Australia, Austria, Belgium, Brazil, Canada, Finland, France, Germany, Greece, Hong Kong, India, Indonesia, Ireland, Italy, Japan, Malaysia, Mexico, Netherlands, New Zealand, Poland, Portugal, Saudi Arabia, South Africa, South Korea, Spain, Switzerland, Turkey, the United Arab Emirates, the United Kingdom, the United States, and Vietnam.