Tue. Oct 19th, 2021

Google is still racing to pull Android apps Violation of major privacy. Ars Technica Comments Dr. Web Analysts has since removed nine apps from the Google Play Store Discovery They were Trojans stealing Facebook login details. These weren’t vague titles – the malware has more than 5.6 million combined downloads and has been published as easy-to-find titles like “Horoscope Daily” and “Rabbish Cleaner”.

Applications deceive users by simply loading the actual Facebook sign-in page, loading JavaScript “hijacked” certificates from the command and control server and passing them to the application (and thus the command server). They will steal cookies from the approval session. In each case, they have seized it, despite obstacles we can scarcely imagine. “

The mix had five malware variants, but all of their data simultaneously used JavaScript code and configuration file formats.

Google said Ars It banned all app developers from the store, although it could not be a deterrent when criminals could probably create new developer accounts. Google itself may need a screen for malware to keep attackers at bay.

The question, of course, is that apps have downloaded as much as they did before Techtown. Most of Google’s automated screening keeps a lot of malware away from the Play Store, but the subtlety of the strategy has helped remove rogue apps from this defense, and victims may be unaware that their Facebook data falls into the wrong hands. Whatever the reason, it is safe to say that you should be careful about downloading utilities from unknown developers no matter how popular they may seem.

All products offered by Engadget are selected by our editorial team, different from our parent company. Some of our stories include approved links. If you purchase something through one of these links, we can earn an approved commission.

Source link

By admin

Leave a Reply

Your email address will not be published. Required fields are marked *