The Google Play Store is just one app store amongst several that makes some effort to catch malicious apps. It doesn’t look to me as if Google has any special fu though:
Make sure that you read the second half of the first article for a brief round-up of this year’s Play Store malware infections. There’s plenty more discussion about all this out there. “Google Play Store malware” makes for an interesting internet search…
As for installing without a Google account, my current compromise procedure is:
- Install F-Droid
- From F-Droid install Yalp
- Use Yalp to install apps from Google Play Store without a Google account.
Might I suggest that you take a closer look at how Aptoide works? (Including the links that I posted when I started this thread.)
Aptiode is a collection of stores: anyone can set up their own and put whatever apps they want into it. Having said that, the main Aptiode store (called “apps”) is curated by a combination of automated and manual processes: your assertion to the contrary is factually incorrect. From time to time I have requested that Aptoide upload an app from the Google Play Store, and in a couple of cases they have refused because they have identified the app as problematic in some way.
If you have any evidence that the Aptoide checks are weaker than the Google ones, please provide some references.
It is true that installing an app from an Aptoide store other than the “apps” store may be risky and should be done with caution, however Aptoide run checks on all uploaded apps to all stores, and award “Trusted” status to the ones that pass their checks.