Blocking third-party APKs on Xiaomi Redmi 9: system protection

Modern Android smartphones, especially those with Xiaomiโ€™s MIUI add-on, have flexible security that is set to maximum protection by default. However, users often allow unverified installations by downloading files from browsers or messengers, which opens the door to potential threats. It is important for owners of the popular Redmi 9 model to know how to return the system to a safe state and prohibit the automatic installation of suspicious packages.

The locking process is not trivial, as Xiaomi developers constantly change the location of settings in different versions of the firmware, seeking to balance between user convenience and device security. In this article, we will detail the algorithm of actions that will allow you to close access to system installation functions for all applications except official stores.

It is worth noting that the complete disabling of the installation possibility APK-External files require understanding of permissions in Android. We will look not only at the standard paths in the settings menu, but also at specific features. MIUI, Competent configuration of these parameters will make your Redmi 9 significantly more resistant to external attacks.

Risks of Installing Applications from Unverified Sources

The main reason users are seeking to restrict external installations is because of the high probability of malware infecting a device. When you allow a browser or file manager to install applications, you are effectively giving them system-level permissions, which can lead to identity theft, bank details, or access to a camera and microphone without your knowledge.

There is a built-in security scanner in the Xiaomi ecosystem, but it canโ€™t always prevent an already modified app from being installed if the user has confirmed the action himself. Viruses often masquerade as useful utilities or modifications to popular games, convincing a person to click the โ€œInstallโ€ button.

โš ๏ธ Warning: Even if the antivirus is silent, it does not guarantee file security. Many Trojans use code obfuscation techniques to hide their true purpose from the initial security analysis.

In addition, installing software from unknown sources often leads to intrusive advertising that can overlap the interface of other applications or appear on the desktop.This is not only annoying, but also consumes CPU and RAM resources, which is especially noticeable on budget devices such as the Redmi 9.

Understanding these risks is the first step to getting a smartphone setup right, and protecting your deviceโ€™s perimeter starts with controlling which programs have the right to make changes to your file system and your running process registry.

๐Ÿ“Š Where do you most often download applications?
Google Play
APK-browser-file
Third-party stores (RuStore, APKPure)
Files from Telegram

Set up special access in the security menu

In the current versions of the MIUI shell that are installed on Redmi 9, permission management is placed in a separate special features section, which is where the main switch is responsible for the ability to install programs not from Google Play, and you need to go to the basic settings of the device first.

Find a section that might be called "Privacy Protection" or "Passwords and Security," depending on the firmware version (Chinese or global). Inside this section, you should look for a subsection related to special rights or special permissions. Xiaomi's logic is designed to hide these settings from the eyes of the average user, but if you search carefully, they are quickly enough.

You'll need to find a paragraph called "Install Unknown Apps" or "Install Unknown Apps." When you click on it, you'll see a list of all the programs that have the technical ability to start the installation process, which includes browsers (Chrome, Yandex), instant messengers (Telegram, WhatsApp) and file managers.

  • ๐Ÿ“ฑ Open the settings of your smartphone.
  • ๐Ÿ”’ Go to Privacy Protection or Passwords and Security.
  • ๐Ÿ” Find the Special Permissions section (may be hidden under the "More" button").
  • ๐Ÿšซ Select Install Unknown Applications.

Once you enter this list, you'll see that many applications may have an active switch, and your job is to check each one and make sure that the "Allow Installation from this source" switch is turned off, and if you're not using a particular browser to download files, it doesn't need permission.

โ˜‘๏ธ Permit verification

Done: 0 / 1

Disabling extended MIUI monitoring

One of the unique features of the MIUI shell is the Enhanced Monitor feature, which is designed to check installed applications for viruses in cloud databases. However, if this feature is active, it can block the installation of even legitimate applications from third-party sources, requiring constant connection to the Internet and Xiaomi servers.

To fully control the installation process, it is recommended to deactivate this module if you plan to use alternative installation methods, or, conversely, make sure that it works correctly if your goal is maximum lockdown.

Launch the Security app, click on the three dots in the top right corner and select Settings. You can find the "Installation Monitor" or "Scan before install" section here. Disabling this feature will speed up the application installation process, but reduce the level of protection in real time.

It is important to understand the difference between installation permission and monitoring. Permission gives the application the right to run the installer, and monitoring checks the contents of the file before it starts. For maximum security on Redmi 9, it is better to leave monitoring on, but strictly control the list of applications with installer rights.

โš ๏ธ Warning: Disabling advanced monitoring may result in the installation of applications containing hidden miners or ad modules that were not detected by the built-in Google Play Protect antivirus.

If you want to completely disable the installation, make sure that the antivirus settings check the box to block potentially dangerous applications, which will create a double barrier: the system will not allow the installer to start without explicit permission, and the antivirus will warn about the risks if the file is still running.

Working with the developer mode and debugging via USB

For advanced users who use Redmi 9 to test their own applications or deep customize the system, there is a developer mode, enabling this option opens access to hidden settings, including debugging over USB, which is also a channel for installing applications, but from a computer.

To activate this mode, you need to quickly click seven times on the build number in the About section. Once the message "You are a developer" appears, a new option will appear in the settings menu "Additional" or "Extended settings", and that's where the key switches are hidden.

In the section "For developers" we are interested in the item "Debugging by USB". If it's turned on, the computer can gain full access to the smartphone's file system and install applications bypassing standard interface constraints. For the average user who wants to secure the device, this item must be turned off.

Settings -> Additional Settings -> Developer Options -> USB Debugging (OFF)

This menu may also include the "Installation through" item. USB" (Install via USB). It allows you to install applications from your computer without confirmation on your phone screen, which is extremely dangerous if the device is connected to a public charger (the so-called "Juice Jacking" attack").

  • ๐Ÿ’ป Turn off the debugging. USB, If you donโ€™t connect your phone to your PC for development.
  • ๐Ÿ”Œ Prohibit Installation through USB locking out remote installation.
  • ๐Ÿ›ก๏ธ Use the developer mode only temporarily, if necessary.
How do I get back into developer mode again?
If you have hidden the developer menu, just go back to About Phone and click 7 times on the MIUI version.

Comparison of locking methods on different versions of MIUI

Xiaomiโ€™s interface is constantly updated, and the settings on Redmi 9 may vary depending on which version of Android and MIUI is installed (MIUI 11, 12, 13 or 14).

The table below shows you a comparison of the paths to security settings for different versions of the shell, which will help you navigate if the standard instructions don't match your screen.

MIUI versionThe path to settingsTitle of paragraphFeatures
MIUI 11 (Android 9)Settings -> AdditionalUnknown sourcesCommon switch for all applications
MIUI 12 (Android 10)Settings -> Passwords and securityConfidentiality -> Special RightsIndividual permission for each application
MIUI 13/14 (Android 11/12)Settings -> Privacy ProtectionSpecial Opportunities -> Installation of UnknownAdditional verification through the Mi Account
Chinese version (CN)Settings -> AppendicesPermit managementMay require a SIM card to activate

Newer versions of MIUI have added an additional check: when you try to enable an installation from unknown sources, the system may require you to enter a password from your Mi Account account and connect to the Internet, this is done to combat fraudsters who remotely try to install viruses on the phones of older people.

If you encounter an authorization requirement, it means your Redmi 9 is upped in security, check if you own the device, or opt out if someone else is doing the work over the phone.

๐Ÿ’ก

If the system requires binding SIM-Maps to change security settings, and you are using Wi-Fi, just insert any active SIM-map for the time of setting, then remove it.

Frequent problems and ways to solve them

During the setup process, users of Xiaomi Redmi 9 may encounter a number of typical problems, such as the resolution switcher may be inactive (dark), or the system may issue an error when trying to save changes, often due to the activated mode "Protection against theft" or active restrictions profiles.

Another common situation is when an application (such as a file manager) continues to request access every time it starts after turning off permission, in which case it is recommended not only to turn off the switch, but also to clean the installer applicationโ€™s data or remove its updates.

Also worth mentioning is the Safe Mode feature. If your phone suddenly starts behaving strangely and your security settings are locked, it may be that the device is in Safe Mode, which is activated when booted with the volume button pressed, in which mode third-party apps don't work and settings may not be available for change.

โš ๏ธ Note: If you cannot change your application installation settings, check if Guest or Second Space mode is enabled. In these modes, access rights are limited to the user's main profile.

To solve problems with blocking settings, sometimes rebooting the device in normal mode helps, but if the problem lies in the system bug MIUI, clear the cache of the application Security through the application management menu.

๐Ÿ’ก

The main difficulty in setting up MIUI is the constant migration of menu items. If you do not find the setting in the specified place, use a search by settings, entering the keyword "unknown".

Results and recommendations for the maintenance of security

When you finish setting up Redmi 9, it's important to record the results you've achieved. Once you've banned installations from unknown sources, your smartphone becomes much safer. However, protection is a process, not a one-off action. Regularly check the list of special rights apps, especially after major system updates.

Remember that even with the installation turned off from the outside, the risk is through phishing links that can lead to sites that mimic system updates. System updates on Xiaomi only come through the About Phone menu and never through pop-ups in the browser.

Only use official app stores, such as Google Play or GetApps (Mi Store), which undergo strict moderation. If you still need to install an application from the outside (for example, a banking application removed from the Play Market), do so consciously, temporarily turning on permission only for a specific file manager, and immediately turn it off after installation.

Can you completely remove the ability to install APK at the system level?
It is impossible to completely remove the system component "Package Installer" without root rights, since it is necessary for the operation of Android itself and system updates. ADB-commands, but this can lead to unstable phone operation and inability to update applications from any source.
Why did the security settings reset after the MIUI update?
In major firmware updates (e.g. MIUI 12 to 13), the system often resets permissions to install unknown applications for security reasons. This is standard behavior, and the settings need to be checked and re-installed after each major update.
Is it dangerous to keep Device Search enabled to install applications?
Find Device doesn't directly affect APK installation, but it does require a constant Internet connection, and if you turn off the Internet for security, it won't work, which can make it difficult to find your phone in case of a theft.
What to do if the virus is still established?
If the malware is already on your phone, immediately turn on the flight mode to communicate with the attacker's server. Then go to Safe Mode (clutching the off button on the lock screen) and remove the suspicious application through the settings. If you do not, do a full reset (Wipe Data).

Compliance with these simple rules will allow you to safely use all the features of your Xiaomi Redmi 9 without fear for the safety of personal data and the stability of the operating system.