New Delhi: Google retains monitoring Android apps for any risk they might pose to customers’ information safety. Even although a number of apps are routinely deleted on Play Store over the safety considerations, extra such platforms infringing on customers’ privateness maintain cropping up.
According to a brand new analysis report, Android apps which have greater than 5.8 million downloads on the Google Play retailer have been discovered prying on customers’ Facebook passwords.
Security agency Doctor Web has revealed a report whereby it knowledgeable about 9 trojan apps that provide commonly-used photograph modifying and app lock options whereas discreetly stealing customers’ Facebook passwords.
ALSO READ | Twitter Failed To Comply With New IT Rules Leading To Loss Of Immunity: Centre Tells Delhi HC
All these apps discovered on the Google Play retailer have practically 6 million downloads. Google eliminated a few of these apps from the Play retailer, as of July 1, 2021, when the report was revealed, it claims.
Among these, the PIP Photo app was probably the most downloaded because it had 5 million downloads of its personal.
Here are the trojan apps that you must uninstall:
- PIP Photo
- Processing Photo
- Rubbish Cleaner
- Horoscope Daily
- App Lock Keep
- Lockit Master
- Horoscope Pi
- App Lock Manager
- Inwell Fitness
How do apps steal Facebook passwords?
These harmless-looking apps give customers the choice to unlock extra options and disable in-app ads by logging into their Facebook accounts after which the Google and Facebook login possibility is misused to steal passwords of unsuspecting customers.
Here’s how the analysis agency described their methodology of operation: “After receiving the necessary settings from one of the C&C servers upon launch, they loaded the legitimate Facebook web page https://www.facebook.com/login.php into WebView. Next, they loaded JavaScript received from the C&C server into the same WebView. This script was directly used to hijack the entered login credentials”.
“After that, this JavaScript, using the methods provided through the JavascriptInterface annotation, passed the stolen login and password to the trojan applications, which then transferred the data to the attackers’ C&C server. After the victim logged into their account, the trojans also stole cookies from the current authorization session. Those cookies were also sent to cybercriminals,” the report provides.
What to do if apps are put in?
Google has eliminated all of those apps from the Play Store and has reportedly banned their builders from submitting any new apps.
Users who’ve these apps downloaded on their gadgets and particularly those that used the Facebook login possibility are really helpful to revoke the permission given to those apps from accessing your Facebook account. Users ought to change their Facebook account password as nicely apart from uninstalling such apps.
