Technology News
English Edition
  • Home
  • Apps
  • Apps News
  • Google Play Store Removes Nine Malicious Apps That Reportedly Stole Users Facebook Login Credentials

Google Play Store Removes Nine Malicious Apps That Reportedly Stole Users Facebook Login Credentials

These nine malicious apps on the Google Play store said to have had five different variants of malware.

By Satvik Khare | Updated: 5 July 2021 17:13 IST
Google Play Store Removes Nine Malicious Apps That Reportedly Stole Users Facebook Login Credentials

Photo Credit: Dr. Web

Google Play Store has now removed these nine apps

Click Here to Add Gadgets360 As A Trusted Source As A Preferred Source On Google
Highlights
  • Google has also banned the developers of these apps from the store
  • Users with these apps should scan their devices, Facebook accounts
  • The apps had approximately 5.9 million combined downloads
Advertisement

Google has removed nine apps from its Play store after researchers showed that they sneakily stole users' Facebook login credentials. The apps were hidden under names that sounded like everyday utility tools and apps. These include Rubbish Cleaner and Horoscope Daily. According to a report, the malicious apps had approximately 5.9 million combined downloads on the Google Play store — with PIP Photo alone having 5.8 million downloads — and had five different variants of malware. Google had earlier removed three apps meant for children over privacy violations.

Dr. Web, an antivirus service, reports that their malware analysts discovered nine malicious apps - Processing Photo, App Lock Keep, Rubbish Cleaner, Horoscope Daily, Horoscope Pi, App Lock Manager, Lockit Master, Inwell Fitness, and PIP Photo. These apps reportedly acted as trojan malware and stole users' Facebook login credentials after providing users the options to disable ads by logging in via their social media accounts. Dr. Web's report was spotted by Ars Technica.

These apps tricked users by showing an exact replica of Facebook's login page. The apps instead loaded a JavaScript command that stole their login credentials. The apps also apparently stole browser cookies from the authorisation session. There were a total of malware variants and all of them reportedly used an identical JavaScript code to steal user data. The report also noted that out of the malware variants, three were native Android apps, and two were created using Google's Flutter SDK.

The malware variants identified by Dr. Web are Android.PWS.Facebook.13Android.PWS.Facebook.14, Android.PWS.Facebook.15, Android.PWS.Facebook.17, and Android.PWS.Facebook.18.

A Google spokesperson told Ars Technica that they had also banned the app developers of all of the nine apps from Google Play store, which would stop these developer accounts from publishing any new apps on the marketplace. This is a positive step by Google, but a new developer account, under a different name, can be created with a nominal fee of $25 (roughly Rs. 1,900).

Users are advised not to download any app from an unknown developer, regardless of how many downloads the app might have. In this case, PIP Photo had the maximum downloads at 5.8 million, followed by Processing Photo at 500,000 downloads. Anyone who has downloaded these apps should thoroughly examine their device and Facebook account for suspicious activities.

Windows 11 has been unveiled, but do you need it? We discussed this on Orbital, the Gadgets 360 podcast. Orbital is available on Apple Podcasts, Google Podcasts, Spotify, Amazon Music and wherever you get your podcasts.
Affiliate links may be automatically generated - see our ethics statement for details.
Comments

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Further reading: Google, Google Play Store, Facebook, Malware
OnePlus Nord 2 Launch Timeline Tipped, May Debut on July 24

Related Stories

Google Play Store Removes Nine Malicious Apps That Reportedly Stole Users Facebook Login Credentials
Comment
Facebook Gadgets360 Twitter Share Tweet Snapchat LinkedIn Reddit Comment google-newsGoogle News

Advertisement

Featured
Follow Us
Latest Videos
More Videos
Tech News in Hindi
More Technology News in Hindi

Advertisement

Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Bridgerton Season 4 Premieres in Two Parts on Netflix: See Details
  2. Earth's Deep Interior May Have Hidden an Ancient Ocean of Water
  3. Scientists Track Glowing Green Comet 3I/ATLAS as It Nears Earth
  4. Sister Midnight Streaming Online: Everything You Need to Know
#Latest Stories
  1. Early Earth’s Deep Mantle May Have Held More Water Than Previously Believed, Study Finds
  2. Nandamuri Balakrishna's Akhanda 2 Arrives on OTT in 2026: When, Where to Watch the Film Online?
  3. Single Papa Now Streaming on OTT: All the Details About Kunal Khemu’s New Comedy Drama Series
  4. Scientists Study Ancient Interstellar Comet 3I/ATLAS, Seeking Clues to Early Star System Formation
  5. Bridgerton Season 4 to Release in Two Parts on OTT: When and Where to Watch It Online?
  6. Spider-Like Scar on Jupiter’s Moon Europa Could Indicate Subsurface Salty Water
  7. Wake Up Dead Man: A Knives Out Mystery Now Streaming on Netflix: Everything You Need to Know
  8. Secret Rain Pattern May Have Driven Long Spells of Dry and Wetter Periods Across Horn of Africa: Study
  9. Sister Midnight Out on OTT: Know Where to Watch This Radhika Apte-Starrer Online
  10. JWST Detects Thick Atmosphere on Ultra-Hot Rocky Exoplanet TOI-561 b
Gadgets 360 is available in
Follow Us
Download Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.
Trending Products »
Latest Tech News »