面部竊取惡意軟件感染超過 200 穀謌播放中嘅應用

黑尔加·史密斯五月 20, 2022最後更新: 五月 20, 2022

32 1 分鐘閱讀

Trend Micro analysts have noticed that the Facestealer malware continues to infiltrate the Google Play Store. 例如, more than 200 variants of malware were recently discovered in the official app store. Currently, the malware has already been removed from the Google Play Store.

Recall that Facestealer was first detected back in 2021, and in March of this year, information security specialists from Pradeo found infected applications in the Google Play Store that were installed more than 100,000 times.

Let me remind you that we also wrote that SharkBot Trojan Again Infiltrates the Google Play Store.

As the name implies, Facestealer is designed to steal logins and passwords from 臉書 accounts, which are then used by attackers for phishing, publishing fakes, and as advertising bots.

As Trend Micro now reports, some of the apps they found have been installed over 100,000 times.

The report notes that Facestealer-infected apps often look like photo editing, processing, or sharing tools, but can also take other forms. 例如, researchers talk about Daily Fitness OL, which is advertised as a fitness app with exercises and video tutorials.

One of the apps we found, named Daily Fitness OL, claims to be a fitness app, complete with exercises and video demonstrations. But like the initial variant, it was designed to steal the Facebook credentials of its users.Trend Micro specialists write.

Google Play舖頭中嘅“Facestealer”

This fake fitness app prompts users to log in to Facebook through the built-in browser, and then a JavaScript code is “injected into the loaded page to steal the credentials entered by the user.”

After the user successfully logs in to an account, the app collects the cookie. The spyware then encrypts all the personally identifiable information (PII) and sends it to the remote server. The encryption key and address of the remote server are all taken from the downloaded configuration.researchers report.

Other apps infected by Facestealer found by Trend Micro are: Enjoy Photo Editor, Panorama Camera, Photo Gaming Puzzle, Swarm Photo, 和 Business Meta Manager.

標籤

黑尔加·史密斯五月 20, 2022最後更新: 五月 20, 2022

32 1 分鐘閱讀

面部竊取惡意軟件感染超過 200 穀謌播放中嘅應用

Trend Micro analysts have noticed that the Facestealer malware continues to infiltrate the Google Play Store. 例如, more than 200 variants of malware were recently discovered in the official app store. Currently, the malware has already been removed from the Google Play Store.

黑尔加·史密斯

留言取消回覆

Remove BGZQ Ransomware Virus (+DECRYPT .bgzq Files)

Remove BGJS Ransomware Virus (+DECRYPT .bgjs Files)

移除KAAA勒索軟件病毒 (+解密.kaaa文件)

移除UAJS勒索軟件病毒 (+解密.uajs文件)

移除USZQ勒索軟件病毒 (+解密.uazq文件)

移除VOOK勒索軟件病毒 (+DECRYPT .vook文件)

移除LOOY勒索軟件病毒 (+DECRYPT.looy文件)

移除KOOL勒索軟件病毒 (+DECRYPT .kool文件)

移除NOOD勒索軟件病毒 (+DECRYPT.nood文件)

移除WIAW勒索軟件病毒 (+解密.wiaw文件)

移除WISZ勒索軟件病毒 (+DECRYPT.wisz文件)

移除LKFR Ransomware病毒 (+DECRYPT.lkfr 文件)

移除LKHY Ransomware病毒 (+DECRYPT.lkhy文件)

移除LDHY勒索軟件病毒 (+DECRYPT .ldhy文件)

移除KVIP Ransomware病毒 (+DECRYPT .kvip文件)

Trend Micro analysts have noticed that the Facestealer malware continues to infiltrate the Google Play Store. 例如, more than 200 variants of malware were recently discovered in the official app store. Currently, the malware has already been removed from the Google Play Store.

黑尔加·史密斯

伊朗APT石油鑽井平台使用新嘅埼玉後門

Microsoft警告XorDdos惡意軟件活動增加

留言取消回覆

相關文章

新版本嘅Magniber勒索軟件威脅Windows 11 用戶

善意勒索迫使受害者做善事

俄羅斯Fronton殭屍網絡可以做嘅不僅僅昰大規模嘅DDoS攻擊

Microsoft警告XorDdos惡意軟件活動增加