Google has announced the removal of about 25 malicious apps from Google Play. This comes after the French cybersecurity firm Evina discovered that these apps intended to hack the Facebook app on the devices on which it was installed.
This list of applications has a huge variety; flashlights, image editors, wallpaper apps, etc. The worrying thing is that according to Evina’s research, these apps have been downloaded and installed hundreds of thousands of times, and they may be perfectly fine on some of your devices.
All of these apps, while delivering on their promises, sought to steal your Facebook login credentials. In fact, all of these applications shared the same malicious code, so if you have any of these apps, you should uninstall them now.
These apps steal your Facebook data: delete them now
Super Wallpapers Flashlight
Contour Level Wallpaper
iPlayer & iWallpaper
Super Bright Flashlight
Accurate Scanning of QR Code
Classic Card Game
Junk File Cleaning
Daily Horoscope Wallpapers
Anime Live Wallpaper
iHealth Step Counter
The modus operandi of these apps is very simple. These apps contain malicious code that checks whether the Facebook app is open in the background. Then, they would display a browser tab with a fake login page in the open background app window for you to complete your login. This page would steal our data and send it to a remote server.
The servers are closed and according to Google, apps removed from the Google Play Store should be automatically deleted from the devices on which they were installed. However, it’s vital that you review your apps, especially if you’ve made the mistake of putting your data in those apps.
Check your passwords and permissions