Follow us for updates
© 2020 reportr.world
Read the Story →

These 25 Android Apps were Secretly Stealing Facebook Passwords

They were disguised as wallpaper programs and card games.
by John Paulo Aguilera
Jul 2, 2020
Photo/s: Rami Al-zayat via Unsplash
Shares

A handful of mobile applications were recently removed from Google Play Store for harvesting Facebook login credentials.

Cybersecurity firm Evina detected the 25 malicious programs, which were hidden as wallpaper apps and card games, among others. Unfortunately, the new malware had already been downloaded a total of 2.34 million times.

Check out the list:

Evina
Continue reading below ↓

Evina explained how these apps steal FB information: "When an application is launched on your phone, the malware queries the application name. If it is a Facebook application, the malware will launch a browser that loads Facebook at the same time.

"The browser is displayed in the foreground which makes you think that the application launched it. When you enter your credentials into this browser, the malware executes java script to retrieve them. The malware then sends your account information to a server."

See Also

No need to worry, though, as the French agency was able to reverse-engineer the malware to protect their end-users. Also, Google pulling the apps from Play Store automatically disables the program on user devices.

Evina Chief Technology Officer Lionel Ferri said, "It's a fraudulent technique that points out the danger and reflects how important it is to protect yourself. It can not be identified by Facebook as the malware displays in front of the legit app when it is launched."

Continue reading below ↓
Latest Headlines
more about:
Read Next
Recent News
The news. So what? Subscribe to the newsletter that explains what the news means for you.
The email address you entered is invalid.
Thank you for signing up to On Three, reportr's weekly newsletter delivered to your mailbox three times a week. Only the latest, most useful and most insightful reads.
By signing up to reportr.world newsletter, you agree to our Terms of Service and Privacy Policy.