PSafe logo
Your IP address () and location () are vulnerable to tracking. Conceal your identity now. Install dfndr vpn.

Beware of New Android Malware That Steals Your Facebook Password

A series of malicious apps have been discovered in the Google Play Store. How can you keep your information safe?

The team at Google works hard to prevent malicious Android apps from entering the Play Store, but occasionally something will slip by the gatekeepers. A new threat to Android smartphones, dubbed as ‘GhostTeam’ has been discovered. The malware was found in over 50 different Android applications and targeted users of Facebook.

Keeping yourself protected against malicious malware can be a difficult task. One way to prevent an infestation on your phone is to use dfndr security’s Full Virus Scan feature on your Android phone, which scans for viruses, malicious content, or infected apps even checking your SD card.


Now that you have a way to employ a defense, learn more about this Android malware that’s out there infecting devices.

Read More: All About the Trusted Contacts Feature on Facebook

Dole Out Administrator Permissions Selectively
In the specific instance of the GhostTeam malware, its developers took advantage of both your device’s permissions and your trust. You download and install a supposedly safe app, which then downloads malware in the background and requests administrative access to your device.

Take time to read any Android prompts which ask for specific permissions. For example, consider why a calendar application would require access to your microphone or camera – it typically wouldn’t need this to function. Be careful of what permissions granted to your apps and if one asks to become a device administrator deny the request. Apps with device administrator privileges can prioritize themselves and take control of your device.

Two-Factor For Enhanced Security — The Smart Way to Go
Gaining administrative access to your device was only the first step for GhostTeam. Once the needed permissions were obtained, the device would attempt to phish the user through a barrage of Facebook login requests. Phishing attacks are used to trick users into giving sensitive information to a brand or service they believe to be trustworthy but is only being spoofed for malicious intentions.

While it would be impossible to be completely aware of every trap out there on the web, we should be as alert as possible to potential phishing scams. Some phishing scams are incredibly realistic and fool even the best of us.

This is where two-factor authentication can help. Adding this to your Facebook account is easy, and try to do the same for every account if you can, so hackers won’t be able to get in with just your password. Two-factor authentication ensures you have two pieces of information; in most cases, this includes your password and a one time code texted or emailed to your device of choice.

Consider security practices like two-factor authentication, watch what you download, and you should be quite safe. If you believe that you may have already been infected, be sure to download a security app or use the one you already have to scan your phone.