These 9 Android apps were infected with malware that stole Facebook credentials |


In July last year, Google had removed 11 applications from the Google Play Store as they were infected with Joker malware. As it turns out, nine more apps that are available on Google Play Store are infected with malware. What is even worse that these apps might have risked the Facebook accounts of around six million users. According to Dr Web, these applications ask users to log into their Facebook accounts to get rid of ads, and when users type the Facebook credentials, these apps steal the login ID and password, risking the security of their Facebook accounts. Google has removed these nine applications from the Google Play Store but not before these apps were downloaded millions of times. Here is the complete story.

Also read: Beware! ‘Flubot’ malware targeting Android phones can steal your netbanking passwords


Facebook accounts of 6 million users at risk due to malware-infected Android apps

On July 1st, Dr Web published a report showing proof that nine applications that are available on the Google Play Store are infected with malware and that these apps are stealing the Facebook credentials of the users. According to Dr Web, these applications contain advertisements and ask users to log in to their Facebook accounts to get rid of the ads. When a user agrees to log in to Facebook, these apps load the genuine Facebook page. However, these applications immediately load a JavaScript that they receive from a C&C server into the WebView. This script steals the login ID and password that the user types on the page. Below are the names of these nine malware-infected apps. 

  • PIP Photo (more than 50,80,000 downloads)
  • Processing Photo (more than 5,00,000 downloads)
  • Rubbish Cleaner (more than 1,00,000 downloads)
  • Inwell Fitness (more than 1,00,000 downloads)
  • Horoscope Daily (more than 1,00,000 downloads)
  • App Lock Keep (more than 50,000 downloads)
  • Lockit Master (more than 5,000 downloads)
  • Horoscope Pi (more than 1,000 downloads)
  • App Lock Manager (more than 10 downloads)


Google quickly acted on the information revealed by Dr Web and removed the nine applications from the Google Play Store along with banning the accounts of these developers. However, when combined, these applications were downloaded more than six million times before they were removed. So, it is possible that the Facebook credentials of around six million users have been compromised. If you have any of these apps on your device, you should delete them right now.


While Google acted quickly on the information, the question is that how did these apps pass Google’s security check. Evidently, Google’s current security measures aren’t enough to keep malware away from the Play Store.

Stay connected with us on social media platform for instant update click here to join our  Twitter, & Facebook


We are now on Telegram. Click here to join our channel (@TechiUpdate) and stay updated with the latest Technology headlines.

For all the latest Technology News Click Here 

 For the latest news and updates, follow us on Google News


Read original article here

Denial of responsibility! TechAzi is an automatic aggregator around the global media. All the content are available free on Internet. We have just arranged it in one platform for educational purpose only. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials on our website, please contact us by email – [email protected]. The content will be deleted within 24 hours.


This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More