Modern Xiaomi and Redmi smartphones, which run MIUI shells or the new HyperOS, have advanced anti-malware protection mechanisms. However, frequent requests for downloading files from the Internet require the user to pay attention to security settings. One key setting that often remains open after the first installation of a third-party application is permission to install from unknown sources.
Ignoring this setting can lead to the fact that any browser or messenger will be able to silently download and run APK-In this article, we will discuss how to find this option in the depths of the system menu, how to restrict the rights of specific applications and why the standard one-click switch in new versions of Android no longer exists.
You don't have to be a mobile security expert to secure your device, but you just need to do a few things that are described below, and take full control of what's installed on your phone, and we'll look at both standard methods through settings and hidden options for advanced users.
The evolution of security in Android and MIUI
Older versions of the Android operating system had a global switchboard that completely banned or allowed apps not from Google Play. This was convenient but not secure, since one infected application could use this access to install viruses. Starting with Android 8.0 Oreo, Google changed the security architecture by implementing a permission model for each individual application.
Xiaomi in its shells MIUI And HyperOS went a step further, and it introduced dual controls, even if you let the browser install. APK-Files, the system will run additional verification through the service MIUI This creates an additional barrier that often scares newcomers, but is critical to protecting personal data.
Understanding this evolution is important, because many users are looking for an old switch in the menu and can't find it, and today we're not working with a global system setup, but with granular access rights for each installation source.
โ ๏ธ Attention: In new versions MIUI 14 and HyperOS 1.0, the path to settings may vary slightly depending on the firmware region (Global, China, EEA). If you do not find a paragraph in the specified place, use the search by settings.
The system architecture of modern smartphones is designed so that no application can change system files or install other programs without the explicit, one-time or permanent permission of the user, a fundamental principle that cannot be circumvented by simple methods without violating the integrity of the system.
Search for settings through system search
The quickest way to find the option you need in Xiaomiโs confusing menu is to use the built-in search engine.The depth of the menu nesting in the latest versions of the shell sometimes baffles even power users, so using search saves time and nerves.
To do this, open the Settings app and find the search bar (magnifying glass) at the top of the screen, type in "unknown" or "special" and the system will prompt you to go to the desired section, which is especially true if you have an advanced settings mode.
- ๐ Click on the magnifying glass icon at the top of the settings screen.
- ๐ Enter the phrase "Unknown sources" without quotes.
- ๐ Select โInstall Unknown Appsโ in the search results.
After clicking on the search link, you will be placed in a list of all the apps that have ever tried to install. APK-The file, or the theoretical ability to do so, is where the permission management takes place.
Disabling rights for specific applications
Unlike older versions of Android, we don't turn off the feature globally here. We have to go through the list of apps and make sure that none of them are active permissions, most often browsers (Chrome, Yandex), file managers (File Manager) and instant messengers (Telegram, WhatsApp).
Go to the list "Install Unknown Applications." You'll see a list of programs. Click on each application that has the status "Allowed." In the window that opens, just turn the switch to the position "Off" (gray).
โ๏ธ Verification of source applications
Special attention should be paid to the application MIUI Downloads and system Package Installer. Sometimes after updating the firmware rights can be reset or, conversely, be granted automatically.
If you use third-party app stores, such as GetApps ( Xiaomiโs own store) or RuStore, they may also need access to work properly. APK-file.
Configure through the menu "Special features"
Sometimes direct search doesn't work, or the menu interface is changed by the manufacturer, so you can use the classic way through the special features section, which works on most Redmi and Poco devices.
Follow the path: Settings โ Applications โ Application Management. In the upper right corner, click on the three dots (menu) and select Special App Access. In the list that opens, look for โInstall Unknown Appsโ.
| Parameter | Default value | Recommended value | Safety impact |
|---|---|---|---|
| Chrome/Browser | Permitted (often) | Forbidden. | High (main attack vector) |
| Telegram | Requests during installation | Forbidden. | Average (risk of downloaded files) |
| Conductor | Depends on the version. | Forbidden. | High (access to all files) |
| GetApps | Permitted. | As you wish. | Low (official store) |
This is a way to see the full picture of access rights, and if you see an application that you don't use, but it has permission to install programs, you might want to consider removing or blocking it.
Why can the list of applications be empty?
Blocking through Developer Mode
For advanced users who want maximum control, there is a hidden developer mode, which can be found additional restrictions regarding installing applications via ADB (Android Debug Bridge) and debugging over USB.
To activate the developer mode, you need to quickly click on the MIUI version number 7 times in the About Phone section, after which a new option will appear in the settings menu "Additional" or "Extended settings".
Inside the developer menu, look for the USB Debugging option and make sure it's turned off if you're not using your phone to debug apps. Also check the USB Installation option, which should be inactive, and this will prevent you from installing apps from your computer without your knowledge.
- ๐ Activate Developer Mode (7 clicks according to version) MIUI).
- ๐ Find the "Developers" section in the settings.
- ๐ซ Turn off the "Debugging by" option USB" and โInstallation through USB".
These measures create layered protections, and even if an attacker gains physical access to an unlocked phone, they will not be able to easily install malware through a computer, as the debugging protocol will be closed.
โ ๏ธ Note: Do not turn on the developer mode and debugging USB This opens up ports for potential attacks when connected to public charging stations or other computers.
Use of antivirus and MIUI Security
The built-in security antivirus from Xiaomi is based on the Avast engines and AVL. It's automatically scanning. APK-files when they are downloaded or before installation. Even if you accidentally allow installation, the system will alert you to the dangers.
It is recommended to run a full system scan regularly, and to do this, open the Security app and click "Security Check." Make sure that the "Confirm When Install" option is enabled in the antivirus settings.
๐ก
Enable Cloud Verification in Xiaomiโs antivirus settings, which will allow you to check the hash amounts of installed files against the database of known viruses in real time, even if the antivirus databases on your phone are not updated.
If the system detects a threat, it blocks the installation, but it is not necessary to rely on the antivirus alone: it may not be aware of new viruses (zero-day threats), so manually disabling installation rights from unknown sources remains the most reliable method.
Also worth noting is Google Play Protect, which runs in the background and scans apps even outside the Play Market Store. Make sure it's active in your Google account settings on your device.
Frequent problems and their solution
Users often experience a situation where settings are reset after a system update or the phone insists on offering to enable the installation from unknown sources, which may be due to the peculiarities of some Chinese firmware versions or the specific behavior of installed applications.
If you notice that permission is turned on by itself, check the list of recently installed applications. Often ad modules or "optimizers" try to get these rights.
In some cases, resetting the settings of source applications (browsers) helps. Go to Settings โ Apps โ All apps โ All applications, find a browser, select Clear โ All data. This will return the factory access settings.
๐ก
The most reliable way to protect yourself is to hold the global ban and only grant temporary permission when needed, taking it back immediately.