Security researchers have recently discovered malware, dubbed Ghost Team, in 56 mobile applications in the #GooglePlay Store that, once downloaded, steal your Facebook login credentials and aggressively spam users with pop ups.
According to the report, the apps themselves do not contain malware, but once installed, it first confirms if the device is not an emulator or a virtual environment and then accordingly downloads the malware payload, which prompts the victim to approve device administrator permissions to gain persistence on the device.
Once a user logs into Facebook, the app prompts the user to reverify their credentials, which is when the #phishing attack occurs and the hacker group gains access to the user’s credentials.
It’s important to note the likelihood that individuals are using the same passwords for #Facebook as they are for their emails, bank accounts, and business accounts. If hackers get ahold of your FB credentials, what else from your personal life or professional life will they also have access to? #hackerinsurance
Evolve MGA cyber risk insurance covers policyholders in the event their cloud data is hacked, lost, or stolen. Contact us about buying a policy before an event happens to your business.
If you’d like to read more from The Hacker News, click here.