Security News > 2022 > March > Android password-stealing malware infects 100,000 Google Play users

A malicious Android app that steals Facebook credentials has been installed over 100,000 times via the Google Play Store, with the app still available to download. The Android malware is disguised as a cartoonifier app called 'Craftsart Cartoon Photo Tools,' allowing users to upload an image and convert it into a cartoon rendering.

Over the past week, security researchers and mobile security firm Pradeo discovered that the Android app includes a trojan called 'FaceStealer,' which displays a Facebook login screen that requires users to log in before using the app.

As many apps unnecessarily require users to log in to a server, in many cases Facebook, users have become numb to these login prompts and more commonly input their credentials without suspicion.

Since the particular app is still on the Play Store, one may automatically assume that the Android app is trustworthy.

Malicious Android apps sometimes sneak into Google Play Store and remain until they are detected from bad reviews or discovered by security companies.

Pradeo has informed Google of the nature of the Craftsart Cartoon Photo Tools app, and Bleeping Computer has also sent a message to the Play Store team, so Google should remove it shortly.

News URL

https://www.bleepingcomputer.com/news/security/android-password-stealing-malware-infects-100-000-google-play-users/