Meta is warning Facebook users about hundreds of apps on Apple and Google’s app stores that were specifically designed to steal login credentials to the social network app.
The company says it’s identified over 400 malicious apps disguised as games, photo editors, and other utilities and that it’s notifying users who “may have unknowingly self-compromised their accounts by downloading these apps and sharing their credentials.” According to Bloomberg, a million users were potentially affected.
In its post, Meta says that the apps tricked people into downloading them with fake reviews and promises of useful functionality. But upon opening some of the apps, users were prompted to log in with Facebook before they could actually do anything — if they did, the developers were able to steal their credentials.
Meta says that it reported the apps to Google and Apple and got them taken down, but it’s still not a great look that they made it onto the stores in the first place.
