Meta’s Malware Detection team discovered over 400 mobile applications designed specifically to steal login information from users, including two-factor authentication codes.
The malicious applications were found when the company was examining cyber dangers for Facebook. They added that they are unsure how many people have already downloaded these applications, but they are doing everything possible to notify victims.
David Agranovich, director of threat disruption at Meta stated:
“So we’re being overcautious here. We will notify one million users that they may have been exposed to one of these applications,” and added “that the apps targeted people indiscriminately”
The malicious applications in concern are photo editors, VPNs, games, and even flashlight apps designed to fool users into logging in or connecting to their Facebook account or another platform.
“Many of the apps provided little to no functionality before you logged in,” Agranovich said. “Most provided no functionality even after you logged in.”
The login screen might take the user’s username, password, and two-factor authentication code. Hackers might then utilize the stolen access to carry out more frauds.
To avoid this, it is a good idea to read the reviews on any software featured in the App store before installing. Check the 400 app list to ensure it is not already installed on your phone.
You should take caution when using programs that demand you to sign in or link your accounts; unlike our FREE VPN Unseen Online Unlimited, which does not require or ask users to log in and instead allows them to use it instantly.