Friday, July 3, 21:52
Home security Google: Remove 25 Android apps that stole Facebook credentials!

Google: Remove 25 Android apps that stole Facebook credentials!

Google removed 25 Android apps from it this month Play Store as it turned out that they were stealing Facebook credentials. These Android apps were downloaded more than 2,34 million times, by the time they were removed. Malicious apps were developed by the same threat group and although they offered users different ones functions, everything worked "subterranean" in exactly the same way.

According to a report by the French cybersecurity company "Love", Android apps are presented as games for cell phones, step counters, file managers, processors images - videos, wallpaper apps and lens apps. Although these applications offered a legitimate functionality, they also contained malicious code. Evina researchers noted that the apps contained code which could detect which application a user recently opened and which he had on his mobile desktop.

Android apps


The malicious Facebook application had a window browser at the top of the official Facebook app and loaded a fake Facebook login page. In the image below, the blue line depicts the actual Facebook application and the black line the electronic fishing page (phishing).

Facebook credentials

Each time users entered credentials on this e-fishing page, the malicious application recorded data and sent them to a distant one server located in the airshop.pw domain.


Evina found the malicious code that stole Facebook credentials in 25 Android apps that were reported to Google about a month ago. Google has removed them applications this month, after the findings of the French security company were verified. Some of the apps were available in the Play Store for more than a year before they were removed. The full list of 25 applications, their names and ID package, is shown below. When Google removes malicious apps from the Play Store, it also disables apps on a user's device and notifies them via service "Play Protect" included in the official Play Store app.

Google-Android apps-Facebook credentials

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Pohackontas
Pohackontashttps://www.secnews.gr
Every accomplishment starts with the decision to try.

LIVE NEWS

Avaddon ransomware: Attacks through Excel 4.0 macros

Microsoft announced yesterday that Avaddon ransomware spread this week through an old technique that came to the fore again. The...

Apple: Prohibits updating Chinese Apps without permission

Apple is banning developers from updating existing apps in China's App Store if they don't have government approval.

Australia: Thousands of MyGov accounts are sold on the Dark Web

Access to more than 3600 MyGov accounts is being sold on the dark web, potentially exposing thousands of Australians to fraud and identity theft.
00:03:03

Party Time: Watch TV with your friends online

Party Time: Watch TV with your friends on the internet Time for a different party than you are used to, watching your favorite ...

CISA and FBI warn businesses of Tor's risks

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued a warning to businesses regarding ...

openSUSE: The new Leap 15.2 hard drive has been released

Recently, the next stable version of the openSUSE operating system was released. According to the development team of the operating system, ...

What are the most popular types of malware?

Researchers are looking for the most common types of malware. During the investigation of the malicious activities, the researchers in cyberspace focus ...

REvil ransomware: Target the Light SA electricity company

The operators of REvil ransomware (also known as Sodinokibi) violated the Brazilian electricity company Light SA ...

LinkedIn: Our bug is due to an iOS problem

A representative of LinkedIn told ZDNet yesterday that an error in the iOS application was responsible for a seemingly "interfering behavior" that ...

Valak Info Stealer targets businesses in Europe and America

Many businesses in North and South America, but also in Europe, have fallen victim to the infamous Valak Info Stealer.