According to a security report from Dr.Web (above ArsTechnica), Google has “got to the heart of” nine Android apps and had them removed from the Google Play Store. The apps, which were downloaded 5.8 million times in total, misled users by performing tasks like removing certain files, providing horoscopes, performing photo edits, and more.
While these apps were fully functional, they required users to log into their Facebook accounts in order to function. And this is how the Trojan malware in these apps would do, stealing Facebook passwords from victims.

While the malware was set up to steal Facebook passwords, the report states that “the attackers could easily have changed the Trojan’s settings and ordered them to load another legitimate service’s website, a phishing site. Thus the Trojans could have been used to steal logins and passwords from any service. “

The nine apps may have been removed from the Google Play Store, but if you’ve never removed them from your device, they remain a threat to your phone or tablet. If you see they are on your handset or slate, you need to uninstall them immediately. The nine apps include:
  • Process photo
  • Keep app lock
  • Garbage cleaner
  • Daily horoscope
  • Horoscope more
  • App lock manager
  • Lockit master
  • Inwell Fitness
  • PiP photo

And if you want the doctor’s advice, Dr. Web states that “Android device owners only install applications from known and trustworthy developers and pay attention to other user reviews. The reviews cannot guarantee that the apps are harmless, but they can still warn you of possible threats. Also pay attention to when and which apps ask you to log into your account. “

Without patting ourselves on the back, we’ve often suggested that looking at the reviews of an app is one of the best ways to find red flags warning you to avoid an app. Dr.Web also says, “If you are unsure whether what you are doing is safe, it would be better if you stopped going and uninstalled the suspicious program.”

Source link

Leave a Reply