{"id":90751,"date":"2022-10-08T08:32:14","date_gmt":"2022-10-08T08:32:14","guid":{"rendered":"https:\/\/harchi90.com\/meta-finds-400-mobile-apps-out-to-steal-facebook-login-info\/"},"modified":"2022-10-08T08:32:14","modified_gmt":"2022-10-08T08:32:14","slug":"meta-finds-400-mobile-apps-out-to-steal-facebook-login-info","status":"publish","type":"post","link":"https:\/\/harchi90.com\/meta-finds-400-mobile-apps-out-to-steal-facebook-login-info\/","title":{"rendered":"Meta finds 400 mobile apps out to steal Facebook login info"},"content":{"rendered":"<div>\n<p>Meta will notify at least 1 million Facebook users that their login information may have been stolen if they downloaded one of hundreds of malicious mobile apps. <\/p>\n<p><strong>Driving the news: <\/strong>Meta&#8217;s security team published a report this morning detailing how more than 400 mobile apps posed as innocuous tools, such as photo editors, to get people to share their Facebook login credentials. <\/p>\n<ul>\n<li>355 of those were Android apps, while 47 were on iOS. <\/li>\n<li>About 40% of the apps were disguised as photo editing tools.  The others fell into a range of categories including gaming, lifestyle, business utility and virtual private networks. <\/li>\n<li>The report was the product of an attempt at more regular security advisories from Meta&#8217;s Security Team.<\/li>\n<\/ul>\n<p><strong>How it works: <\/strong>Bad actors create malicious applications, disguise them as run-of-the-mill tools and then publish them onto mobile app stores. <\/p>\n<ul>\n<li>After downloading the app, a user is prompted to set up an account by using the \u201cLogin with Facebook\u201d function. <\/li>\n<li>Once someone enters their login credentials, the underlying malware tucked into the app collects and steals that information.<\/li>\n<li>Those login credentials can be used to gain complete access to someone&#8217;s Facebook account \u2014 or other accounts, if they use the same email and password combinations elsewhere.<\/li>\n<\/ul>\n<p><strong>Details<\/strong>: David Agranovich, Meta&#8217;s director of threat disruption, told reporters that it&#8217;s impossible for his team to determine the exact number of Facebook users who fell for this scam since the attack happened on their personal devices.<\/p>\n<ul>\n<li>But Agranovich and his team have identified at least one million potentially affected users, although he noted that the company is being \u201covercautious\u201d with notifications.<\/li>\n<li>Both Apple and Google told Axios that the malicious apps have been removed from their stores.<\/li>\n<\/ul>\n<p><strong>the big picture<\/strong>: More bad actors have been turning to malicious applications as a way of stealing login credentials or installing spyware onto someone&#8217;s device without them knowing.<\/p>\n<ul>\n<li>While Apple and Google also have teams that carefully vet the apps uploaded to their stores, they can&#8217;t catch everything. <\/li>\n<\/ul>\n<p><strong>be smart:<\/strong> Meta is advising people to carefully examine the applications they ask to connect to their Facebook account. <\/p>\n<ul>\n<li>\u201cIf a flashlight application is requiring you to log in with Facebook before it gives you any flashlight functionality, it&#8217;s probably something to be suspicious of,\u201d Agranovich said.<\/li>\n<\/ul>\n<p><em>Sign up for Axios&#8217; cybersecurity newsletter Codebook here.<\/em><\/p>\n<p><span id=\"midStoryAd\" data-ad-status=\"NO_AD_LENGTH\"\/><\/div>\n<p>    .<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Meta will notify at least 1 million Facebook users that their login information may have been stolen if they downloaded one of hundreds of malicious mobile apps. Driving the news: Meta&#8217;s security team published a report this morning detailing how more than 400 mobile apps posed as innocuous tools, such as photo editors, to get &hellip;<\/p>\n<p class=\"read-more\"> <a class=\"\" href=\"https:\/\/harchi90.com\/meta-finds-400-mobile-apps-out-to-steal-facebook-login-info\/\"> <span class=\"screen-reader-text\">Meta finds 400 mobile apps out to steal Facebook login info<\/span> Read More &raquo;<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"default","ast-global-header-display":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false,"jetpack_publicize_feature_enabled":true},"categories":[4],"tags":[29779,1479,29778,3730],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack-related-posts":[{"id":90255,"url":"https:\/\/harchi90.com\/facebook-warns-1-million-users-login-information-compromised\/","url_meta":{"origin":90751,"position":0},"title":"Facebook warns 1 million users login information compromised","date":"October 7, 2022","format":false,"excerpt":"Facebook parent Meta is warning 1 million users that their login information may have been compromised through malicious apps.Meta's researchers found more than 400 malicious Android and Apple iOS apps this year that were designed to steal the personal Facebook login information of its users, the company said Friday in\u2026","rel":"","context":"In &quot;Technology&quot;","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":93155,"url":"https:\/\/harchi90.com\/you-should-probably-reset-your-facebook-password-today\/","url_meta":{"origin":90751,"position":1},"title":"You Should Probably Reset Your Facebook Password Today","date":"October 10, 2022","format":false,"excerpt":"photo: LittlePigPower (Shutterstock)You might have given away your Facebook login info without meaning to, if you downloaded one of the more than 400 malicious apps designed to steal Facebook credentials from users. So it might be time to change your password.Facebook discovered hundreds of malicious appsThe news dropped in an\u2026","rel":"","context":"In &quot;Technology&quot;","img":{"alt_text":"Ilavie Espresso Machine With Steamer","src":"https:\/\/i0.wp.com\/i.kinja-img.com\/gawker-media\/image\/upload\/c_fill,fl_progressive,g_center,h_180,q_80,w_320\/e9e3d0ae04013373d598cb10eb1721dc.png?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":90909,"url":"https:\/\/harchi90.com\/facebook-warning-1-million-users-about-stolen-usernames-passwords\/","url_meta":{"origin":90751,"position":2},"title":"Facebook warning 1 million users about stolen usernames, passwords","date":"October 8, 2022","format":false,"excerpt":"Meta Platforms said it would notify roughly 1 million Facebook users that their account credentials may have been compromised due to security issues with apps downloaded from Apple and Alphabet's software stores.The company announced Friday that it identified more than 400 malicious Android and iOS apps this year that target\u2026","rel":"","context":"In &quot;Technology&quot;","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":26558,"url":"https:\/\/harchi90.com\/meta-is-shutting-down-its-couples-messaging-app-you-didnt-know-existed\/","url_meta":{"origin":90751,"position":3},"title":"Meta is shutting down its couples messaging app you didn&#8217;t know existed","date":"July 27, 2022","format":false,"excerpt":"We hope you weren't using Meta's experimental Tuned app to keep your relationship fires burning. Gizmodo reports Meta is shutting down Tuned on September 19th, and that sign-up attempts for the couple-oriented app now produce errors. The company wasn't shy about its reasons for the move. In a statement to\u2026","rel":"","context":"In &quot;Technology&quot;","img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":94394,"url":"https:\/\/harchi90.com\/meta-continues-to-shovel-money-into-the-growing-vr-gaming-segment\/","url_meta":{"origin":90751,"position":4},"title":"Meta continues to shovel money into the growing VR gaming segment","date":"October 12, 2022","format":false,"excerpt":"enlarge \/ Previously a PlayStation VR exclusive, Iron Man VR will be coming to Quest 2 after Meta's purchase of developer Camouflaj.Sony Meta's Connect keynote presentation Tuesday afternoon spent a lot of time talking about how virtual reality\u2014and the coming high-end Quest Pro headset\u2014would help revolutionize the future of work\u2026","rel":"","context":"In &quot;Technology&quot;","img":{"alt_text":"<em>The Walking Dead: Saints and Sinners<\/em> has brought in an impressive $50 million on Quest VR, proving at least some titles can find a significant market on the platform.","src":"https:\/\/i0.wp.com\/cdn.arstechnica.net\/wp-content\/uploads\/2022\/10\/saints-640x413.jpg?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]}],"fifu_image_url":"https:\/\/images.axios.com\/gNeQWF59-BrR56cBhihF26MAuQY=\/0x413:8256x5057\/1366x768\/2022\/10\/06\/1665067582314.jpg","_links":{"self":[{"href":"https:\/\/harchi90.com\/wp-json\/wp\/v2\/posts\/90751"}],"collection":[{"href":"https:\/\/harchi90.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/harchi90.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/harchi90.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/harchi90.com\/wp-json\/wp\/v2\/comments?post=90751"}],"version-history":[{"count":0,"href":"https:\/\/harchi90.com\/wp-json\/wp\/v2\/posts\/90751\/revisions"}],"wp:attachment":[{"href":"https:\/\/harchi90.com\/wp-json\/wp\/v2\/media?parent=90751"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/harchi90.com\/wp-json\/wp\/v2\/categories?post=90751"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/harchi90.com\/wp-json\/wp\/v2\/tags?post=90751"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}