A MALICIOUS Android app has been stealing thousands of smartphone owners' personal data.
Cybersecurity experts are warning Facebook users to remain alert after they uncovered a harmful Android app on the Google Play Store that steals login credentials, according to a new Laptop Mag report.
Access to a user's Facebook account can allow hackers to breach data such as credit card details, conversations, and search history.
French cybersecurity company Pradeo was the first to detect the malware, which is called "Craftsart Cartoon Photo Tools".
The malicious software purports itself as a photo-editing tool but in actuality deploys an Android trojan known as "Facestealer" to gain access to Facebook credentials.
In short, the fraudulent app displays a Facebook login page upon its launch that requires the user to enter their username and password.
Once a user does this, their credentials are then instantly copied and transmitted to the hackers.
If a person does not enter their login, the photo app cannot be used and their information stays safe.
Pradeo says that the software is embedded with a small piece of code that was able to bypass Google Store's security.
At present, more than 100,000 users have the app installed onto their devices.
However, following a report by Pradeo, the malware has been removed from the Google Play Store, preventing further downloads.
The cybersecurity company noted that the malicious software is connected to a Russian server.
"The application Craftsart Cartoon Photo Tools makes connections to a domain registered in Russia," cybersecurity researcher Roxane Suau said.
"Our research shows that this domain has been used for 7 years on and off, and is connected to multiple malicious mobile applications that were at some points available on Google Play and later deleted."
Suau continued: "To maintain a presence on Google Play, repackaging mobile apps is common practice for cybercriminals. Sometimes, we even observed cases in which repackaging was entirely automated."
Experts advise anyone who has the app downloaded on their device to immediately remove it.
Do you have a story for The US Sun team?
Email us at firstname.lastname@example.org or call 212 416 4552.
Like us on Facebook at www.facebook.com/TheSunUS and follow us from our main Twitter account at @TheSunUS
Solar flare 'could sideswipe Earth' TODAY sparking geomagnetic storm
My daughter was 'tracked for FOUR hours' around Disney World by an Apple AirTag
How to track friends and family using Google Maps
Urgent warning over password mistakes putting online accounts at risk
A Full Stack Developer can be described as a multi-faceted developer, who is proficient in all areas of software development. They often have an accompanying or monitoring function....Read more