This archive report was first published on 6 July 2020.
Google has taken action against 24 Android apps that were secretly stealing Facebook users' credentials and personal details. The tech giant removed the apps from its Play Store at the end of May after French cyber-security firm Evina discovered the malicious code.
According to Evina, the apps offered genuine functionality but hid malicious code that could infiltrate devices. Once installed, the code would activate and start stealing personal data, including Facebook login credentials.
The 24 apps that were removed include Super Wallpapers Flashlight, Padenatef, Wallpaper Level, and several others. If you have any of these apps on your phone, it's essential to delete them immediately and change your Facebook password.
Google has been cracking down on apps that flood Android users with adverts. In May, the tech giant banned over 50 apps for the same reason, and now there are 25 more apps that users should delete from their phone if they use Android.
Evina found that the malicious code in the 24 apps could mimic popular social media sites and overlay a web browser window on top of the Facebook app. This would bring up a Facebook login page that looked incredibly like the real thing, tricking users into entering their username and password, which would then be sent to hackers.
Google has verified Evina's findings and removed the 24 apps from the Play Store. If you have any of these apps, make sure to delete them immediately and change your Facebook password to protect your personal data.