In a recently identified scam, a malicious app “Android.FakeApp” is being used to steal login credentials of users directly from compromised devices.
Hacking Facebook accounts (i.e., Login Id and Password) have always remained in trend between cybercriminals and malicious threat actors.
The Malware Android.FakeApp is mostly detected in Asia-Pacific region. The malware is using third-party applications market to infect devices. Scammers are using an aggressive approach to steal Facebook login credentials by stealing data directly from devices.
How Android.FakeApp Steals Data Directly From Device to Hack Facebook Account
According to Symantec, when Android.FakeApp malware is installed, the user can not suspect any malicious activity in their device because the malware hides the app icon from home screen and the whole service runs in the background. The malware takes the following steps to steal details from infected devices:
- Malware checks for the target Facebook account by submitting IMEI (International Mobile Equipment Identity) to the C&C (command and control) server.
- If no Facebook account is found on the device then it checks if the app is installed on the device.
- Then malware launches a fake Facebook Login page to steal user credentials.
- It randomly displays the fake Facebook Login Page until the credentials are collected.
Once the malware is logged into Facebook Account, it has a wide range of activities to follow links and scrape the personal data of victim and their friends.
How to Stay Safe From Facebook Hacking Malware
- Keep your device software and apps update.
- Never download apps from unfamiliar websites and only install apps from trusted sources and websites.
- Always check the permissions required by an app before installing.
- Make schedule backup of your data.
You might also have interest: