While it’s certainly not 100 percent safe, the Google Play Store does offer some protections, and sideloading the Fortnite installer means allowing installations from unknown sources—something that’s not recommended, especially as some users may forget to disable the permissions afterward.

It was security researchers from Google who publicly disclosed the problem on its Issue Tracker site—whether Fortnite’s absence from the Play store motivated Google to investigate the app thoroughly is unknown.

The vulnerability in the Android Fortnite Installer would allow malicious apps already present on a user’s phone to hijack the installation procedure and download other malicious applications with extra permissions—a Man-in-the-Disk (MitD) attack.