Be careful, this Android malware has already hacked thousands of Facebook accounts

On Android, a new Trojan horse has already compromised the Facebook accounts of more than 10,000 users around the world since March 2021. Nicknamed FlyTrap in reference to carnivorous plants, it is spread through fraudulent applications.

FlyTrap
FlyTrap © Zimperium

If you have an Android smartphone and a Facebook account, beware. Since March 2021, a new Android malware named FlyTrap – in reference to the carnivorous dionea flytrap plant – has spread to more than 140 countries. France is one of the countries concerned.

It has spread to smartphones by more than 10,000 victims through social media hijacking like Facebook, third party app stores, and downloaded apps. The latter is from Vietnam, according to a report released by Zimperium today.

FlyTrap: on Android, this malware has already hacked thousands of Facebook accounts

Infected apps are no longer available on the Google Play Store. On the other hand, they continue to be available in third-party app stores, according to Aazim Yaswant, malware researcher at Zimperium. The list of applications is as follows:

  • GG Voucher (com.luxcarad.cardid)
  • Vote European Football (com.gardenguides.plantingfree)
  • GG Coupon Ads (com.free_coupon.gg_free_coupon), GG Voucher Ads (com.m_application.app_moi_6), GG Voucher (com.free.voucher)
  • Chatfuel (com.ynsuper.chatfuel)
  • Net Coupon (com.free_coupon.net_coupon)
  • Net Coupon (com.movie.net_coupon)
  • EURO 2021 Official (com.euro2021)

See also: Windows 11: Internet installation ISOs are rife with malware

These malicious apps claim offer Netflix and Google AdWords promo codes. They then allow users to vote for their favorite teams and players from Euro 2021, which took place between June 11 and July 11, 2021, only on condition that they log in with their Facebook accounts.

Once a user logs into their account, the malware steals victim’s Facebook username and password, its location, email address, IP address, as well as cookies and all information associated with its Facebook account. This allows the author to spread the malware to other users.

« The tools and techniques used by FlyTrap are not new, but are terribly effective due to the lack of advanced security on these devices. »Indique Zimperium. « It wouldn’t take much for FlyTrap or any other Trojan to target even more critical information. The author concludes in a detailed report, which urges users to be wary of third-party app stores.

LEAVE A REPLY

Please enter your comment!
Please enter your name here