Tech News

Google removes applications that stole facebook passwords

Pinterest LinkedIn Tumblr

Google is still struggling to get rid of all Android apps that commit serious privacy violations. Google has already removed nine apps from the Play Store store after discovering they were Trojans stealing Facebook login details, specifically passwords. These applications didn’t have titles that easily denounce them, the malwares had more than 5.8 million downloads, and they presented themselves with easy-to-find titles like “Daily Horoscope” and “Cleaning Junk”.

The applications tricked users by indicating the application login through Facebook, when loading at login, JavaScript from a command and control server automatically stole users’ credentials.

They also stole the login session cookies. Facebook was the target in each type of these malware, but the creators could have simply directed users to other Internet services.

There were five variants of this malware on the Play Store, but they all used the same JavaScript code and configuration file formats to pass on the proper information.

Google removes applications that stole facebook passwords

Google told the Ars which has already managed to ban all the creators of these types of apps from the store, although I recognize that it may not be a great solution since the malware creators are likely to create new accounts. Google may need to track the malware itself to keep the creators at bay.

The problem with this situation is that the applications accumulated millions of downloads even before being removed. Google’s extensively automated screening keeps a large amount of this type of malware out of the Play Store, yet weak protection may have helped rogue apps bypass these defenses and leave victims unaware that their Facebook data has fallen into the wrong hands.

Whatever the cause, it’s safe to say that all users should be careful when downloading any type of app whose creators are unknown, no matter how popular they might be.

Source: gadget

Have an article/sponsored post to share? Whatsapp: +2348129656985.

Notify of
Inline Feedbacks
View all comments
Pin It