This news has been received from:

All trademarks, copyrights, videos, photos and logos are owned by respective news sources. News stories, videos and live streams are from trusted sources.

DOZENS of Android apps have been caught nicking people's Facebook passwords without their permission, cyber security experts report.

The malicious apps were downloaded more than 2.3million times and posed as step counters, wallpaper apps, mobile games and more.

2Dozens of Android apps have been caught nicking people's Facebook passwordsCredit: Getty - Contributor

They were removed by Google from the Play Store after the search giant was alerted to the issue by researchers at French tech firm Evina.

In a report seen by ZDNet this week, Evina security gurus detailed how they routed out 25 nasty apps posing as legitimate downloads on the Play Store.

While they looked like normal apps, they were secretly stealing people's Facebook usernames and passwords.

Researchers said that once downloaded, the apps would overlay the Facebook app with a fake login page.

2It's not clear what the cyber crooks planned to do with the credentialsCredit: Getty - Contributor

Users would then unwittingly plug in their username and password believing they were logging into Facebook.

However, the apps stole those credentials and then sent them to a remote server.

It's not clear what the cyber crooks planned to do with the credentials.

Usernames and passwords can easily be sold to hackers looking to break into people's other online accounts.

That's because many people use the same username and password for Facebook as they do other accounts, such as their email or Instagram.

Evina researchers said they reported the 25 malicious apps to Google at the end of May.

Google swiftly removed them from the Play Store after independently verifying the software was up to no good.

The apps posed as image editors, video editors, step counters, flashlight applications, file managers, wallpaper apps and mobile games.

The 25 malicious apps

We suggest you delete these right away...

  • Super Wallpapers Flashlight
  • Padenatef
  • Wallpaper Level
  • Contour Level Wallpaper
  • iPlayer & iWallpaper
  • Video Maker
  • Color Wallpapers
  • Pedometer
  • Powerful Flashlight
  • Super Bright Flashlight
  • Super Flashlight
  • Solitaire Game
  • Accurate Scanning of QR Code
  • Classic Card Game
  • Junk File Cleaning
  • Synthetic Z
  • File Manager
  • Composite Z
  • Screenshot Capture
  • Daily Horoscope Wallpapers
  • Wuxia Reader
  • Plus Weather
  • Anime Live Wallpaper
  • iHealth Step Counter
  • com.tqyapp.fiction
  • How to change your Facebook password

    If you believe you were affected by one of the apps, it's best you change your Facebook password right away.

  • Click the down arrow in the top-right corner of any Facebook page and select Settings.
  • Click Security and login.
  • Click Edit next to Change password.
  • Click Save Changes.
  • To reset your password if you're not logged in to Facebook:

  • Go to the Find your account page.
  • Type the email address, mobile phone number, full name or username associated with your account, then click Search.
  • Follow the on-screen instructions
  • Genius Google app lets you see 'lifelike' dinosaurs in real world through your camera Most read in Phones & GadgetsJAW-DROPPING3D face of 'jawless' Stone Age man whose head was found on a SPIKE revealedZAP!US Marines' new weapon can electrocute enemies from 300 feet awayTIKTOK SHOCKWe showed 6 mums what kids REALLY watch on TikTok from porn to puppy slappingPORN PANICThousands of naked selfies and videos from OnlyFans site leaked onlineAPPLE CRUMBLEWhich iPhones are 'obsolete' and 'dangerous' in 2020? The full listWurm InformationHere's how to evolve your Wurmple after Pokémon Go's latest update

    In other news, hackers recently tricked Google Alerts into sending malware-ridden links to users.

    Here are three Google settings you need to activate now to stop hackers.

    And, a tech blogger has revealed the possible design for next year's iPhone 12.

    Have you had any cyber security problems recently? Let us know in the comments...

    We pay for your stories! Do you have a story for The Sun Online Tech & Science team? Email us at

    News Source:

    Tags: android cyber crime and hacking facebook

    Banco Sabadell (-3.59%) and Telefónica (-2.79%), lower Ibex stocks

    Next News:

    Nuts & Bolts: Inside a Democratic campaign

    It’s another Sunday, so for those who tune in, welcome to a diary discussing the Nuts & Bolts of a Democratic campaign. If you’ve missed out, you can catch up any time: Just visit our group or follow the Nuts & Bolts Guide. Every week I try to tackle issues I’ve been asked about. With the help of other campaign workers and notes, we address how to improve and build better campaigns, or explain issues that impact our party.

    You may have noticed that many companies are choosing to boycott Facebook over their failure to stop intolerant content on their platform or to offer effective protection to those attacked. There are valid reasons to do that. Democratic campaigns have made their outreach primarily at the door, talking to voters in person. Someone I have known for years made the point for me: “If you knocked on my door right now and tried to hand me things, my door would stay shut—and I like you.” This is a difficulty many campaigns are going to face this fall. So, how can we use digital effectively and responsibly this fall?

    Facebook is a problem

    I will speak my piece regarding Facebook here. I am completely aware of how many invest large sums of money into Facebook for campaign ads. I understand it. I can understand the response they feel Facebook generates, the number of people they connect with. But there are real darksides to the advertising strategies of Facebook.

    In 2019, Facebook shut down and discontinued 5.4 BILLION fake Facebook accounts. What does that mean to you and your campaign? What does it mean to advertisers? One of the questions asked in a media meeting I attended last year with attorney generals revolved around specifically this question: how much money did clients pay to advertise to non-real people? If Facebook determined you paid 4,000 for impressions, but 600 were fake accounts, you just wasted your money with absolutely no accountability at all for the practice.

    In the end, organic, non-paid work on platforms like Facebook can be productive, building a real outreach for your campaign without feeding the corporate giant money. If you are running the right race in the right market, why not argue against monopolies? This not only saves you funds, but it allows you a better outreach that gives you first-person vouchers who back your campaign. This is far more successful than a random ad. People are more likely to vote for someone that has the endorsement of someone they personally know as opposed to a random ad. 

    One of the problems of Facebook, however, is something we are just addressing with the boycott. In a meeting in California, representatives from Facebook spoke to the Association of State Democratic Committees, and talked about their new efforts to improve the platform. We were all allowed to ask questions. I asked specifically: what about reported posts? I was informed they would be handled. When another member asked: “what if they are not, and we appeal, and it still just comes back ‘within community standards’” there was a long pause before I read a threat on a sitting state legislator with sexual assault made through Facebook that deemed “okay” by Facebook.

    I have made it clear as to why I left the platform entirely, but more and more young people are doing the same. TikTok has been largely free of campaigns, but that doesn’t mean political content isn’t there. Make use of your own social media as you feel comfortable: Twitter, Facebook, Instagram, Snapchat, or any other platform. Think twice about where you invest your money though. The bang is often not worth the buck.

    The effectiveness of YouTube ads

    What methods are out there that can help get your campaign name out there in a new and unique way? Have you considered YouTube advertising? Let’s face facts. More people under 40 have given up on TV and watch a few streaming services and YouTube. With a billion views globally on YouTube every day, you can tailor your outreach easily to specific areas, and because you pay “by the view” you can contain your budget.

    Video advertising on YouTube doesn’t have to be fancy, high-end production. In a thirty second ad, if your first five seconds include “I’m x, asking for your vote for Y” and then your message, you can maximize your performance even on people who chose to skip your ad. It is easy to make fun of terrible ads—and please, don’t do that—but it is often possible to find great graphic design work and filming possibilities available while limiting your cost.

    So many smaller campaigns reject the idea of video promotion, thinking that they are priced out of the TV markets, something absolutely true for the overwhelming majority of campaigns not running at the federal level. A campaign running for state house? You can spend less than a single piece of mail dropped into your district and get a fairly effective YouTube outreach.  

    Build your own groups, lists, and working trees

    Every campaign should be prepared to build their own Twitter, Signal, and other digital media-ready private rooms or groups that can help promote a message. This way, when you want to get a message out quickly, let your campaign followers and supporters know directly, so they can retweet, promote, and share your content, helping make sure it shows up more frequently than just a single post from your campaign. If your candidate says something great but only 10 people see it, well, that isn’t enough—those views mostly came from the campaign itself.

    Building a digital promotion group that can help support and spread the message of the campaign can show organic strength behind a message immediately and help your volunteers feel even more involved in your campaign. These groups also give your volunteers a chance to provide feedback and alert the campaign to messages that they think the campaign should consider. 

    Final thoughts: Pay little, get most

    Think of digital expenditures the same way you think of sending mail. If you had planned to send 10 pieces of mail into your district in your campaign, you might consider seven and use the budget from three into digital. You might balance it either way, more or less. Factor this into your budget as you plan, and keep in mind the demographic you are trying to reach and need to turn out. The better you know your audience, the more you can decide.

    Me, personally, over the years I have come to this conclusion: if you are sending regular U.S. mail to anyone under 40, you might as well put your money into the center of the room and light it on fire. People under forty rarely read anything sent to them in the mail unless it is an Amazon package or check. Anything that looks like an advertisement is trashed so fast that they simply do not take it in. Older voters tend to take more time reading what comes to them in the mail. Your own team may strongly disagree, and my own assessment on this is a caveat that says: your mileage may vary.

    Whatever you decide, when you spend money on your campaign, always feel like you are doing the right thing in how you spend money given to you from Democratic donors. Donors want you to spend their money. They don’t want to see your campaign end up with money unspent. They also want to see you spend campaign funds in a way that respects Democratic causes.

    Next week: Zoom, teams, how to make video meetings really work

    Other News

    • COVID-19 Didn’t Kill Weddings. But It May Change Them Forever.
    • Black Worker Files Discrimination Complaint Against Facebook
    • Dave Yost Seeks Publics Input on Whether Google Uses Deceptive Sales Practices
    • SoCal weather: Hot temps, sunny skies on tap for Monday
    • apps offering needed income for cooks
    • Uber agrees to buy Postmates with $2.65 billion all-stock deal
    • WATCH: Melissa Rein Lively Tears Masks Off Shelf at Scottsdale Target in Viral Video
    • 17-year-old team member of the Miracle League of San Antonio loses battle with COVID-19
    • Google Search Trends Show Trumps Sleepy Joe Nickname For Biden Isnt Catching On
    • apps providing needed income for chefs
    • You can not imagine what is the most used password (or the same yes)
    • Google Maps Releases New COVID-19 Related Features
    • Chrome update may extend your laptops battery life by up to 2 hours
    • Activate your Infonavit account, you can do your paperwork online
    • Coronavirus News: Google creates feature helping users navigate COVID-19 hot spots
    • A Startup Is Testing the Subscription Model for Search Engines
    • What are geofence warrants and how can police use them against protesters?
    • Facebook groups pivot to attacks on Black Lives Matter
    • How to Passcode-Lock Any App on Your Phone