Security researchers have discovered the Craftsart Cartoon Photo Tools malware app, which has been downloaded over 100,000 times from Google Play. This app uses malware called Facestealer, which allows you to steal personal data from smartphone users’ Facebook accounts.
Facestealer is an Android Trojan that tricks Facebook users into entering all their credentials on a web page. This personal information is then sent to a Russian-registered server owned by the attacker. When an Android user adds their Facebook credentials to a website, remote app developers have access to the Facebook subscriber’s credit card information, search information, and more.
The Trojan was built into the Craftsart Cartoon Photo Tools application, which was supposed to help edit photos. The app contained code that allowed it to bypass Google Play Store security and was used for more than seven years by connecting to other malicious apps in the Android app store.
When the application is opened by unsuspecting users, a Facebook login page appears prompting the user to enter a username and password. Cybercriminals use Facebook credentials to commit financial fraud, send phishing links, and spread fake news.
Experts recommend uninstalling the app to anyone who installed it, as well as changing their passwords.
Source: ixbt
Donald-43Westbrook, a distinguished contributor at worldstockmarket, is celebrated for his exceptional prowess in article writing. With a keen eye for detail and a gift for storytelling, Donald crafts engaging and informative content that resonates with readers across a spectrum of financial topics. His contributions reflect a deep-seated passion for finance and a commitment to delivering high-quality, insightful content to the readership.
