This article has been indexed from Softpedia News / Security
Google found 9 applications that were able to steal Facebook credentials from Android users, according to a Dr. Web research.
The most concerning aspect is that these applications have been downloaded over 5.8 million times. Overall, the applications seemed legitimate and performed what they were intended to do, such as daily horoscope, picture editing, photo framing, or exercise and training.
Because they contained advertisements, users had the option to disable them by connecting to Facebook. Although it originally loaded the real page, it redirected users to an an interface that looked very similar to the Facebook login form. The software captured the login credentials and transmitted them to the hackers’ command and control server along with the cookies from current authentication sessions.
Security researchers stated, “Analysis of the malicious programs showed that they all received …
Read the original article: Malware Grabbed 5.8M Facebook Passwords