Google has eliminated this month 25 Android apps from the Google Play Retailer that had been caught stealing Fb credentials. From a report: Earlier than being taken down, the 25 apps had been collectively downloaded greater than 2.34 million instances. The malicious apps had been developed by the identical risk group and regardless of providing totally different options, underneath the hood, all of the apps labored the identical. In accordance with a report from French cyber-security agency Evina shared with ZDNet at this time, the apps posed as step counters, picture editors, video editors, wallpaper apps, flashlight purposes, file managers, and cell video games. The apps supplied a legit performance, however additionally they contained malicious code. Evina researchers say the apps contained code that detected what app a person not too long ago opened and had within the telephone’s foreground. If the app was Fb, the malicious app would overlay an internet browser window on high of the official Fb app and cargo a faux Fb login web page (see picture under: blue bar = precise Fb app, black bar = phishing web page).
Learn extra of this story at Slashdot.