The Google Play software platform recently removed nine Android apps with about 6 million downloads that hid Trojans with which they stole access credentials and passwords for the social network Facebook.
As reported by the cybersecurity company Dr. Web in a statement, the applications hid a malicious file in functional software of different types, such as password managers, image editors or horoscope apps.
The titles of the nine applications were: Processing Photo, App Lock Keep, Rubbish Cleaner, Horoscope Daily, Horoscope Pi, App Lock Manager, Lockit Master, Inwell Fitness and PIP Photo. The sum of downloads from all of them was 5.8 million.
The sum of downloads from all of them was 5.8 million. Photo: Shutterstock
Dr. Web warned that, although they have already been removed from Google Play, they are still available on third party platforms and app aggregators.
The affected applications contained a variant of the trojan Android.PWS.Facebook.15, which uses file formats and Java scripts to steal user information, in this case, their access data to the social network Facebook.
To get access to Facebook access data, the applications asked users to identify themselves with their social network accounts to access premium features or stop receiving advertising.
Although the attacks were focused on obtaining user access data, cybersecurity researchers warned that their method could also be applied to any other type of form on web sites. phishing, and that Trojans could have been used to steal credentials from any other service.
Google Play includes more security features for developers
In this context, the Google Play software platform introduced new security measures for application developers, from whom it asks for more information to identify them, such as their names or addresses, as well as requiring two-step verification.
These functions arrive with the objective of “maintaining Google Play safe and secure and provide a better service to the developer community “, as revealed by the technology giant through a statement on its developer blog.
Until now, Google Play only required developers to identify them through an email address and a phone number, but the platform has now expanded the data that these users must provide to verify that they are real people, which will be kept private.
With the Google Play update, it will ask the developers for their account type – personal or business -, their contact name, their physical address and a verification of their postal or email address.
Developers can already fill in this information for a week, and it will be necessary to specify it for those who want update your profile information. Since August, all new accounts must specify the type of account and verify the data.
Likewise, the official application platform also incorporated the two-step verification as another additional security feature for developers, as well as to protect your software and end users.
With information from DPA.