4 hours agoSome Android applications are caught stealing passwords on Facebook
Periskopi(5 years ago)
(5 years ago)Google intervened to remove nine Android apps downloaded more than 5.8 million times from the company's Play Store after apps were caught secretly stealing user's Facebook access credentials. “Applications were fully functional, which was supposed to weaken the vigilance of potential victims. With this, to enter [...]
“Applications were fully functional, which was supposed to weaken the vigilance of potential victims. With this, to access all app functions and, supposedly, to disable ads inside the apps, users were encouraged to access their Facebook accounts, “researchers from Dr. Web.
“Marketing within some of the apps was really present, and this maneuver was meant to further encourage the owners of Android equipment to perform the required actions. ”
Applications masked their goal through garbage cleaners, gyms and astrology programs to deceive victims into entering their Facebook account and steal credentials introduced through a portion of the JavaScript Code.
App List:
PIP Photo (>5,000,000 installations)
Processing Photo (>50,000)
Rubbish Clearer (>10 000)
Horoscope Daily (>10 000)
Inwell Fitness (>1050,000)
App Lock Keep (5)
Master Lockit (5,000)
Horoscope Pi (>1.000)
App Lock Manager (10)
The latest discovery comes days after Google announced new measures for the Play Store, including demand that developers' accounts activate Verification with 2 Open (2SV), provide an address and verify their contact details as part of its continued efforts to fight fraud.
