Google took down popular Android apps that stole Facebook passwords.
Google took down popular Android apps that stole Facebook passwords as the company was still racing to pull Android apps that committed major privacy violations.
Based on a report on Endgadget, Ars Technica noted that Google had removed nine apps from the Google Play Store after Dr. Web analysts discovered that those apps were trojans stealing Facebook login details.
Those apps weren’t obscure titles — the malware had more than 5.8 million combined downloads and posed as easy-to-find titles such as “Rubbish Cleaner” and “Horoscope Daily”.
Facebook was the target in every case, but creators could just have easily steered users toward other internet services.
Google then told Ars that it banned all the app developers from the Play Store, although that might not be much of a deterrent when the perpetrators can likely create their new developer accounts.
Endgadget also reported that Google may need to screen for the malware itself in order to keep the attackers out. However, the question was how the apps racked up as many downloads on Play Store as they did before the takedown.
Google’s largely automated screening kept a lot of malware out of the Play Store, but the subtlety of the technique might have helped the rogue apps slip past those defenses and leave victims unaware that their Facebook data fell into the wrong hands.
Whatever the cause, it was safe to say that users should be cautious about downloading utilities from unknown developers no matter how popular those apps seemed.
What can you say about this? Let us know in the comments below.