Google is still racing to take out Android apps that commit serious privacy violations. Ars Technica notes that Google has deleted nine apps from the Playstore after Dr. Web analysts found out that they were Trojan horses stealing Facebook connection details. These are not obscure titles – the malware had more than 5.8 million downloads combined and posed as easy to come by titles like “Daily Horoscope” and “Trash Cleaner.”
Google told Ars it banned all app developers from the store, though that might not be much of a deterrent when authors can probably create new developer accounts. Google may require the screen for the malware itself to keep the attackers.
The issue, of course, is how the applications accumulated so many downloads as they did prior to removal. Google’s largely automated screening keeps a lot of malware out of the Play Store, but the subtlety of the technique might have helped the rogue apps slip past these defences and leave victims unaware that their Facebook data fell into the wrong hands. Whatever the cause, it’s safe to say that you need to be careful about downloading utilities from unfamiliar developers, no matter how popular they appear.