• Send Us A Tip
  • Calling all Tech Writers
  • Advertise
Sunday, July 20, 2025
  • Login
TechStory
  • News
  • Crypto
  • Gadgets
  • Memes
  • Gaming
  • Cars
  • AI
  • Startups
  • Markets
  • How to
No Result
View All Result
  • News
  • Crypto
  • Gadgets
  • Memes
  • Gaming
  • Cars
  • AI
  • Startups
  • Markets
  • How to
No Result
View All Result
TechStory
No Result
View All Result
Home Business

Thousands of Facebook accounts hijacked by Flytrap malware

by Srestha Roy
August 10, 2021
in Business
Reading Time: 2 mins read
0
Thousands of Facebook accounts hijacked by Flytrap malware
TwitterWhatsappLinkedin

By acquiring session cookies, a new Android threat known as FlyTrap has been hijacking Facebook accounts of people in over 140 countries.

You might also like

Viceroy Report Raises Concerns Over Vedanta Semiconductor Unit’s Dealings

India Emerges as Global iPhone Hub: Apple Exports Hit $5 Bn in Just One Quarter

Weekly Business Updates: Everything from Byjus legal battle to the LAT Aerospace buzz

 

Source : https://blog.zimperium.com/wp-content/uploads/2021/08/ad_FlyTrap_2b_1280x720px_blog.png

FlyTrap campaigns use basic social engineering techniques to mislead users into logging into malicious applications using their Facebook credentials, which then gather data from the social media encounter. The new piece of malware was uncovered by researchers at mobile security firm Zimperium, who determined that the stolen information was accessible to anybody who accessed FlyTrap’s command and control (C2) server.

Since at least March, FlyTrap campaigns have been operating. The threat operator utilised well-designed malicious apps that were distributed via Google Play and third-party Android platforms. The enticement included free coupon codes (for Netflix, Google AdWords) and voting for one’s favourite soccer club or player, in honour of the UEFA Euro 2020 competition, which has been postponed.

Obtaining the promised prize necessitated enrolling into the app with Facebook credentials, with authentication taking place on the official social network site.

The malicious applications can’t gather users’ credentials since they use the legitimate Facebook single sign-on (SSO) service. Instead, FlyTrap harvests other sensitive data through JavaScript injection : “Using this technique, the application opens the legit URL inside a WebView configured with the ability to inject JavaScript code and extracts all the necessary information such as cookies, user account details, location, and IP address by injecting malicious JS code”

All of the data gathered this manner is sent to FlyTrap’s C2 server. This social engineering affected almost 10,000 Android users in 144 countries. The data comes directly from the command and control server, whereby the researchers were able to obtain since the database containing the stolen Facebook session cookies was made public.

FlyTrap’s C2 server, according to Aazim Yaswant of Zimperium, had several security flaws that enabled access to the stored information, according to a blog post published. According to the study, social media accounts are a typical target for threat actors, who might use them for fraudulent objectives such as artificially inflating the popularity of pages, sites, or items, spreading misinformation, or a political campaign.

He emphasises that phishing pages that steal credentials aren’t the only way to enter into an online service’s account. Logging onto a legal domain has its own set of dangers. Despite without employing any novel techniques, FlyTrap was able to take over a large number of Facebook accounts. It may become a more serious threat for mobile devices with a few tweaks, according to the researcher.

 

Tags: #hackedfacebookFlytrapHackHackingMalwareVirus
Tweet54SendShare15
Previous Post

Mark Cuban says banning crypto ‘growth engine’ would be like banning e-commerce in 1995

Next Post

Blockchain-based digital art installation to launch on Vancouver bridge

Srestha Roy

Recommended For You

Viceroy Report Raises Concerns Over Vedanta Semiconductor Unit’s Dealings

by Rounak Majumdar
July 19, 2025
0
Viceroy Report Raises Concerns Over Vedanta Semiconductor Unit’s Dealings

A new report by US-based short seller Viceroy Research has brought the spotlight back onto Vedanta Limited’s semiconductor ambitions, raising serious questions about the business practices of its...

Read more

India Emerges as Global iPhone Hub: Apple Exports Hit $5 Bn in Just One Quarter

by Ishaan Negi
July 19, 2025
0
Apple to pay up to $500 million to iPhone users after judge nixes final appeal

India's ambition to become a global electronics powerhouse just got a significant boost. Apple has exported over $5 billion worth of iPhones from India during the April–June quarter...

Read more

Weekly Business Updates: Everything from Byjus legal battle to the LAT Aerospace buzz

by Ishaan Negi
July 19, 2025
0
Weekly Business News: Top business updates in this week

From courtrooms to boardrooms, India’s digital and entrepreneurial landscape is buzzing with action. In this article, we explore six major developments—from regulatory showdowns and billion-dollar lawsuits to strategic...

Read more
Next Post
Blockchain-based digital art installation to launch on Vancouver bridge

Blockchain-based digital art installation to launch on Vancouver bridge

Please login to join discussion

Techstory

Tech and Business News from around the world. Follow along for latest in the world of Tech, AI, Crypto, EVs, Business Personalities and more.
reach us at [email protected]

Advertise With Us

Reach out at - [email protected]

BROWSE BY TAG

#Crypto #howto 2024 acquisition AI amazon Apple Artificial Intelligence bitcoin Business China cryptocurrency e-commerce electric vehicles Elon Musk Ethereum facebook funding Gaming Google India Instagram Investment ios iPhone IPO Market Markets Meta Microsoft News NFT samsung Social Media SpaceX startup startups tech technology Tesla TikTok trend trending twitter US

© 2024 Techstory.in

No Result
View All Result
  • News
  • Crypto
  • Gadgets
  • Memes
  • Gaming
  • Cars
  • AI
  • Startups
  • Markets
  • How to

© 2024 Techstory.in

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?