Thursday, January 21, 23:04
Home security Google: Remove 25 Android apps that stole Facebook credentials!

Google: Remove 25 Android apps that stole Facebook credentials!

Google removed 25 Android apps from it this month Play Store as it turned out that they were stealing Facebook credentials. These Android apps were downloaded more than 2,34 million times, by the time they were removed. Malicious apps were developed by the same threat group and although they offered users different ones functions, everything worked "underground" in exactly the same way.

According to a report by the French cybersecurity company "Evina", Android apps are presented as games for cell phones, step counters, file managers, processors images - videos, wallpaper apps and lens apps. Although these applications provided legitimate functionality, they also contained malicious code. Evina researchers noted that the apps contained code which could detect which application a user recently opened and which he had on his mobile desktop.

Android apps

The malicious Facebook application had a window browser at the top of the official Facebook app and loaded a fake Facebook login page. In the image below, the blue line depicts the actual Facebook application and the black line the electronic fishing page (phishing).

Facebook credentials

Each time users entered credentials on this e-fishing page, the malicious application recorded data and sent them to a distant one server located in the domain.

Evina found the malicious code that stole Facebook credentials in 25 Android apps that were reported to Google about a month ago. Google has removed them applications this month, after the findings of the French security company were verified. Some of the apps were available in the Play Store for more than a year before they were removed. The full list of 25 applications, their names and ID package, is shown below. When Google removes malicious apps from the Play Store, it also disables apps on a user's device and notifies them via service "Play Protect" included in the official Play Store application.

Google-Android apps-Facebook credentials


Please enter your comment!
Please enter your name here

Every accomplishment starts with the decision to try.


Mac: How to see which model you have and when it was released

When you need support for your Mac - or want to install some kind of upgrade - you usually need to know the exact ...

Bill Gates: Will he work with Biden on COVID-19 / climate change?

Microsoft co-founder Bill Gates said on Twitter that he is looking forward to working with the new US President, Joe Biden, and ...

What are the rumors circulating about the iPhone 13?

Apple iPhone 13 will have a redesigned Face ID system that will have a smaller notch at the top of the screen, ...

Biden: How was the political transition in the US captured on social media?

As Joe Biden was sworn in as President of the United States, this important political transition was captured on popular social media. On January 20, ...

CentOS ceases to be supported but RHEL is offered for free

Last month, Red Hat caused a great deal of concern in the Linux world when it announced the discontinuation of CentOS Linux.

Microsoft Office 365 employee passwords leaked online!

A new large-scale phishing campaign targeting global organizations has been found to bypass Microsoft Office 365 Advanced Threat Protection (ATP) and ...

COSMOTE and Microsoft provide new cloud solutions for businesses

COSMOTE and Microsoft expand their cooperation, offering even more advanced and high quality cloud solutions, in large and small ...

Cyber ​​attacks in Eastern Europe are on the rise!

The cyber-attacks that have taken place in many US government agencies and companies in recent months have caused concern in the developing countries of ...

Tesla reduces the prices of the Model 3 in Europe

Tesla has reduced the prices of the Model 3 in many European markets, which reductions could be partly linked ...

iOS, Android, XBox users in the crosshairs of a new malvertising campaign

Recently a new malvertising campaign was discovered that targets users of mobile and other connected devices and uses effective ...