An anti-fraud firm has unmasked malware that executes java script to retrieve login credentials of Facebook users around the world, which are then transmitted to a server.
The Paris-based anti-fraud firm, Evina has confirmed that African users of the social media platform are among those targeted.
The malware, discovered in collaboration with Evina’s clients, launches a browser that loads Facebook at the same time a mobile user is trying to open the platform.
By displaying in the foreground, the user believes the fraudulent browser is legitimate.
Malware and ransomware that targets hundreds of millions of mobile users worldwide can have devastating personal, productivity and financial consequences. It is of the utmost importance for individuals and companies alike that Evina remains vigilant against mobile malware, the firm says.
Evina CEO David Lotfi says this new malware is particularly dangerous, as it could effectively ruin online and offline life by making off with the credentials most valued pieces of digital real estate.
“Worse, it is embedded in a whole range of applications commonly available for app store download and these include everything from flashlight to wallpaper, pedometer, file manager and video maker apps.
Evina has successfully reverse-engineered the errant software; and informed Google about this new threat so others could also be protected.
“Fraudsters are everywhere. Let’s remember once again that victims are not culprits. The app developer, the app store and all other legitimate players involved are simply innocent victims of fraudsters and their malware,” says Lofti.