Despite the fact that Google continues to work continuously in its app store so that no possible malware that affects the data and privacy of users sneaks in. There are still many apps that put this at risk, and much more when users use the same credentials to log in to different pages or services. Something that should change and that would be of great help in case a certain app can steal your password or session data, as is the case with the 9 applications that we present today.
Recently, different researchers discovered that up to nine Android applications that have more than 5.8 million downloads combined within the Google Play store, included malicious code that allowed hackers to steal passwords, and all through Facebook.
Infected Android apps
The person in charge of making this information public has been the Dr. Web website, through a publication in which it explains that these 9 applications in question seemed totally legal applications and did not appear to have any type of malware. However, they had different basic photo editing functions to be able to hide their real purpose: to use these apps to steal Facebook passwords.
The main problem with this is that it is common today for many users to use the same password for different services or web pages. Although this trend should end, to avoid putting the personal data of each at risk even more, especially when cases like today happen. Fortunately, Google has realized the problem and the applications are no longer available in their store.
Therefore, if you are one of those users who has any of the following tools, we recommend you delete them as soon as possible:
- PIP Photo: more than 5 million downloads.
- Photo processing: more than 500,000 downloads.
- Junk Cleaner – 100,000+ downloads.
- Inwell Fitness – 100,000+ downloads.
- Daily horoscope: more than 100,000 downloads.
- App Lock Keep: more than 50,000 downloads.
- Lockit Master: more than 5,000 downloads.
- Horoscope Pi: 1,000 downloads.
- App Lock Manager: 10 downloads.
After you have deleted any of these, you should also change your password as soon as possible. In addition, the person in charge of discovering this problem clarifies that cybercriminals devised a clever way to steal Facebook credentials. Basically, they allowed to remove the advertisements of these apps if the users logged in to any of these softwares. And the point is that they left as an option to do it through this platform.