Malicious apps remain as one of the biggest problems for Android operating systems. Both Google and Apple have their own security measures to prevent the arrival of this type of application in their official stores, but neither has managed to completely stop them.
On this matter, it is fair to recognize that Apple has a certain advantage thanks to the peculiarities the company establishes when it comes to regulating the entry and maintenance of applications in its official store. By this, I mean that, in general, the Google Play Store is more affected by the arrival of malicious applications. This reality has been noticed in the latest move by the Mountain View Company.
Google has removed a total of 25 malicious apps that were present in its official app store. In the attached image you can find the complete list with the removed malicious applications. It is estimated all of them would have reached about two million downloads. That means they could have affected a considerable number of users.
Why are they considered as intrusive apps?
Because they all contain a type of malware that is specifically designed to steal the user’s credentials on Facebook. This is how it works:
- The application waits for the user to open another one that has been created by Facebook (Messenger, Instagram, or WhatsApp).
- When it detects it, it opens a new browser tab with a Facebook login page, which is obviously completely false.
- To give a greater image of veracity, said page shows, at the top, the application that the user wanted to start.
- If the user falls into the trap and enters their access data, the malware present in the application copies them and sends them to a specific server.
Although it seems somewhat unsophisticated for the times, the truth is that these types of malicious applications continue to work really well.
Malicious applications know how to surround themselves with that “minimal” credibility halo necessary for the user to get carried away and end up biting the hook. In this case, also influences how problematic it is to do things by inertia. You see how it can help us to think for a minute.
We must bear in mind that, in addition, they were applications that were in the official Google store. Also, infer downloads quantity and positive ratings, so nothing indicated to the user that they could be malicious.
If you have any of these applications installed you should proceed to delete it. Change the password and means of recovery in case you believe your Facebook access credentials have been compromised.