Recent research findings may be a reason to be worried as it reveals the possibility of your Facebook ID being hijacked by a recently detected malware. The report reveals that a Trojan malware dubbed as FlyTrap has hijacked more than thousands of Facebook accounts in around 140 countries in the world.
The research wing, Zimperium’s zLabs mobile threat research team, has made some astonishing revelations that the malware spread to their target prays through Google Play Store, Third Party Apps Stores and Sideloaded Apps.
FlyTrap uses simple social engineering tactics and compels users to login to malicious apps using their Facebook credentials. Subsequently, the malware collects user data from the social media sessions.
The list of apps include:
GG Voucher (com.luxcarad.cardid)
Vote European Football (com.gardenguides.plantingfree)
GG Coupon Ads (com.free_coupon.gg_free_coupon)
GG Voucher Ads (com.m_application.app_moi_6)
GG Voucher (com.free.voucher)
Chatfuel (com.ynsuper.chatfuel)
Net Coupon (com.free_coupon.net_coupon)
Net Coupon (com.movie.net_coupon)
EURO 2021 Official (com.euro2021)
The modus operandi of this malware is simple – it makes use of a JavaScript injection to gain access to the users’ Facebook ID, location, email address and IP address. After being successful in collecting this critical information, the malware then transfers the whole collected data to the command and control server of FlyTrap.
Zimperium team also informed about three malicious apps that may distribute the FlyTrap malware via Play Store. The search engine giant then relied upon the research work by Ziperium and removed the malicious apps from its platform.