SAN FRANCISCO: Meta cautioned 1,000,000 Facebook clients Friday that they have been "uncovered" to apparently harmless cell phone applications intended to take passwords to the informal community.
Up until this point this year, Meta has distinguished more than 400 "noxious" applications custom fitted for cell phones fueled by Apple or Android programming and accessible at the Apple and Google application stores, overseer of danger disturbance David Agranovich said during preparation.
"These applications were recorded on the Google Play Store and Apple's Application Store and masked as photograph editors, games, VPN administrations, business applications, and different utilities to fool individuals into downloading them," Meta said in a blog entry.
The applications frequently ask individuals to log in with their Facebook account data to utilize guaranteed highlights, taking usernames and passwords whenever entered, as indicated by Meta's security group.
"They are just trying to trick people into entering their login information in a way that enables hackers to access their accounts," Agranovich said of the apps.
"We will notify one million users that they may have been exposed to these applications; that is not to say they have been compromised."
More than 40% of the apps Meta listed involved ways to edit or manipulate images, and some were as seemingly simple as using smartphones as flashlights.
"Our sense is these types of malicious app developers try to target multiple services," Agranovich said, noting the app creators are likely after passwords to more than just Facebook accounts.
"The targeting here seemed to be relatively indiscriminate — get people to download the applications around the world in an attempt to get access to as many login credentials as possible."
Meta said that it shared what it discovered with Apple and Google, who control what is offered at their respective app shops and each vet offerings.
Apple did not respond to questions regarding whether it took action against any of the apps Meta deemed malicious.
But Google said that most of the apps Meta flagged had already been identified and removed from the Play store by its own vetting systems.
"All of the apps identified in the report are no longer available on Google Play," a spokesperson told AFP.
"Users are also protected by Google Play Protect, which blocks these apps on Android."
0 Comments