According to Facebook, or rather its parent company Meta, it has found over 400 malware-infected Android and iOS apps in the Google and Apple stores. The apps should tap and forward Facebook access data. Interesting: Meta also found many malicious business or ad management apps.
This year, Meta security researchers found more than 400 malicious Android and iOS apps designed to steal Facebook credentials and compromise people's accounts. These apps have been listed on the Google Play Store and Apple's App Store, disguised as games, VPN services, business apps, and other utilities to trick people into downloading them. A trick here: the offered business or ad management apps would provide unauthorized functions which cannot be found in official apps of technical platforms.
More security through 2FA
According to the meta statistic, almost 400 percent of the 15 malicious apps are pure business apps plus almost 15 percent phone apps. That is a fairly high proportion of over 100 dangerous apps purely for the B2B area and especially SMEs.
The malicious apps were immediately reported to Apple and Google and removed from both app stores. Meta also warned people who may have unknowingly compromised their own accounts by using the apps and sharing their credentials. Victims also got help resetting their account password and other tips on how to better secure access. The keyword here is of course the activation of 2FA - the 2-factor authentication. It's pretty easy on Facebook.
More at Facebook.com