A “new” old Malware named Fake.Android returns to the headlines after Symantec discovered that the malware was back and this time to hurt you through your Facebook account. For those who do not know the malware, it hidden in free third-party applications installed through the Google Play Store, most of the cases are applications that will also show you endless ads. According to the researchers, the malware hit mostly users in the Asian region, while it targeted attack English-speaking users.
The malware works relatively simply, when the first thing is to search for a Facebook account on the device, if it finds a popup screen for the Facebook user, when the user logs in, the malware gets access to the account.
The malware knows how to hide itself and act in the background when the user does not even know that the malware is installed. From that moment on, the malware steals everything that exists on Facebook.
General top-level data: Facebook account, user, password, device IMEI
Profile: Work, education, location, contacts, basic info, nicknames, relationships, family, bio
Activities: Check in, events, friends, groups, likes, pages, posts
If you have a Facebook account connected to your mobile it is very important to keep your mobile up-to-date with the latest security updates, and of course to do something like Log In to the Facebook application only when you know that you are the one who initiated it through the official application.