In its continuing efforts to pull down Android applications that violate privacy policies, Google has reportedly announced that it has removed nine applications from the Play Store directory. Supposedly, the tech giant took this step after reports surfaced about trojans stealing login details of user’s Facebook accounts.
The program would then hijack credentials and pass them to the app, taking them to the command server, as per reports. Reliable sources claim, the trojans were also stealing cookies from the authorization session.
Google stated that it has banned all these app developers from the store. However, the company further added that it was uncertain about the deterrent effect of the ban as perpetrators were likely to create new developer accounts.
The tech giant would supposedly need to screen for the malware itself in order to prevent attackers from using the same. The key question has seemingly been about the way these apps were able to amass so many downloads before they were removed.
According to reports, the firm’s primarily automated screening typically protects the Play Store against a lot of malware. However, in this case, subtle techniques of these rogue apps might have enabled the malware to slip past these barricades, leaving users unaware that their Facebook credentials had fallen into the wrong hands.
Source credits: https://www.engadget.com/google-removes-android-apps-stealing-facebook-passwords-192721252.html