According to the Meta platform, data was taken from fake programs posing as mobile applications.
As a result of fake Android and Apple apps masquerading as legitimate mobile apps, Facebook is notifying 1 million users that their login information may have been compromised.
David Agranovich, Facebook’s director of threat disruption, stated that over 400 malicious Android and iOS apps were discovered this year to steal Facebook login information and compromise people’s accounts.
A malicious app was uploaded to the Apple and Google Play app stores, masquerading as an innocent, unrelated program. Others appeared to be free games or music players, while others appeared to be photo-editing software.
In the world of mobile phones and tablets, Apple’s iOS and Google’s Android are the most widely used operating systems.
According to Facebook, all of the malicious applications detected by it had already been removed from the iOS and Android app stores before the news was made public. The Apple App Store was the source of approximately 10 percent of the fake programs.
As a result, we are notifying people who may have unknowingly compromised their accounts through these apps and sharing their credentials. We are assisting them in securing their accounts,” said Mr. Agranovich.
This type of app usually mimics features such as the “Sign in with Facebook” button by copying its appearance and feel. Instead of using Facebook’s servers to verify usernames and passwords, malicious apps send this information to their developers.
Cybercriminals prize stolen login information, as it allows them access to further personal information about an account holder that can be used as part of identity theft or other fraud schemes.
Cybercriminals also purchase and sell usernames and passwords, and other information obtained from criminal sources, such as home addresses and credit card information.
According to Facebook, users should be cautious in installing mobile applications that require a Facebook login to operate: “Be wary of apps that ask for your Facebook login and password before allowing you to use them.”
The task of vetting new apps uploaded to Apple’s App Store and Google’s Play Store – the Android equivalent – is vast: Apple says it hosts 2 million apps, whereas Google’s Play Store has slightly more, at approximately 2.65 million.