Beware of these Android apps that are stealing user Facebook credentials

Doctor Web’s malware analysts have come up with shocking but not surprising news. The analysts have found 10 Android apps that are integrated with trojans that can steal Facebook users’ login and password details. Out of these 10 apps, 9 applications are available on Google Play Store that portray it as harmless software with more than 5,500,000 active users.

These applications contain a trojan that loaded the legitimate Facebook web page to hijack the credentials. This trojan can also steal cookies from authorisation sessions and send them to cybercriminals.

Here are 9 dangerous Android applications that are compiled with malicious malware with the developer’s name and total install count.

Dr Web discovered a PIP Photo that has been installed more than 5,000,000 times and is injected with a trojan but users might not be aware of it.

As the name suggests, this application shares the horoscope of the users daily and is installed 1,000,000+ times on the devices.

This application is for the app lock app that enables access limitations for the applications. The users install it to lock applications, limiting the access of others.

This application is also used to get the horoscope but it still has fewer downloads.

This application is another photo-editing application that is detected as Android.PWS.Facebook.13.

This is a fitness and wellness application that contains the recording of several sessions for training purposes as per the description.

This is another application that limits the access of users to the applications.

This is the trojan-injected application with minimum installs as of now. This includes gesture lock, fingerprint, passlock, and app lock-like features as per the description.

Rubbish Cleaner is the application that is used to optimise the performance of the Android app.

Google is already planning to
discontinue the APK format for Android apps.