Google Play Store removes nine malicious apps that are reported to use Facebook login users

Google removed nine apps from its Play Store after researchers showed they had stolen Facebook user login details.

Apps were hidden under words that sounded like everyday use tools and apps. These include Rubbish Cleaner and Horoscope Daily.

According to the report, malicious applications had nearly 5.9 million downloads in the Google Play store – PIP Photo alone with 5.8 million downloads – and contained five different types of malware. Google had previously removed three apps designed for children due to breaches of privacy.

Dr. Web, an anti-virus service, reports that their malware analysts have discovered nine malicious applications – Processing Photo, App Lock Keep, Cleaner Rubish, Horoscope Daily, Horoscope Pi, App Lock Manager, Lockit Master, Inwell Fitness, and PIP Photo .

Google removed nine apps

These applications are reported to be working as Trojan malware and stealing Facebook users’ login details after giving users the option to disable ads by signing in with their social media accounts. Dr. Web’s report was seen by Ars Technica.

These apps have tricked users into showing the same image of a Facebook login page. Apps have instead downloaded a JavaScript command that stole their login credentials.

Apps have obviously stolen the browser cookies from the time it was approved. There has been a complete variety of malware and it is all reported that they used the same JavaScript code to steal user data.

The report also revealed that of the various malware variants, three were Android applications, and two were developed using the Google Flutter SDK.

Various malware detected by Dr. Web are Android.PWS.Facebook.13, Android.PWS.Facebook.14, Android.PWS.Facebook.15, Android.PWS.Facebook.17, and Android .PWS.Facebook.18.

A Google spokesman told Ars Technica that they have also blocked app developers from all nine apps in the Google Play store, which will stop these developer accounts from publishing any new apps on the market.

This is a good move for Google, but a new developer account, under a different name, can be created for a fee of $ 25 (approximately Rs. 1,900).

Users are advised not to download any app from an unknown developer, no matter how many downloads the app may have.

In this case, PIP Photo had a top download of 5.8 million downloads, followed by image processing at 500,000 downloads.

Anyone who has downloaded these apps should check their device and Facebook account for suspicious activity.

Also see:: Nokia G20 With MediaTek Helio G35 SoC, Quad-Rear Cameras Yetched in India: Price, Specification

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top