25 applications on the Play Store were able to register Facebook login credentials. To find out was Evina, a French IT security agency that reported them to Google. The Mountain View giant immediately removed them from its application store and disabled them on the smartphones that had installed them. Users were notified via a Play Protect notification.
The applications in question were simple apparently harmless apps like those of wallpapers, flashlight, image editor, flashlights, games and file manager. These apps hid malicious code that could steal Facebook credentials. In practice, a fake login page was created superimposed on the official one, thus deceiving the user who entered his username and password.
Evina further told ZDNet that some of these malicious apps had been in the Play Store for over a year, thus having the time to accumulate over 500 downloads. Google removed them in early June, after analyzing the results shared by the French agency.
Below is the list of fraudulent applications:
- Super Wallpapers Flashlight
- Padenatef
- Wallpaper Level
- Contour level wallpaper
- iPlayer & iWallpaper
- Video Maker
- Color wallpapers
- Pedometer
- Powerful flashlight
- Super Bright Flashlight
- Super flashlight
- Solitaire game
- Accurate scanning of Meade
- Classic card game
- Junk file cleaning
- Synthetic z
- File Manager
- Composite z
- Screenshots capture
- Daily Horoscope Wallpapers
- Wuxia reader
- Plus weather
- Anime Live Wallpaper
- iHealth Step Counter
The new Redmi Note 9s is available for purchase on Amazon at less than 250 euros. .