These Android Apps are Collecting Your Facebook Data

Warning - Apps in the Google Play Store were found to be secretly collecting sensitive data

According to security expert Andrey Meshkov who made the discovery, Android apps helped a company, Unimania, Inc., to collect users' Facebook data and spying on their social network browsing history. The list of the information includes the user’s Facebook profile data, demographics, list of user interests, and the users' browsing history including all the Facebook regular and sponsored posts, tweets, YouTube videos and ads. According to Unimania's privacy policy, they are free to sell these data to anyone.

As described in a previous post, apps even from Google can be a surprise to users.

The discoverer promptly informed Google in May and the developers, team2soft, of the two apps have unpublished the apps on 31 May.

Screenshot of team2soft timeline from https://www.appbrain.com/dev/team2soft/

team2soft was active on Google Play since Oct 2011, their address was stated to be somewhere in Italy, with additional contact details such as:

Details on team2soft from Internet

The two apps that were discovered to be sending details to third party are:

1. Fast - Social App (app.fastfacebook.com)

2. Fast Lite - Social App (app.fast.push.com)

Both apps are no longer in Google Play and the team2soft account is also no longer available. The company Unimania Inc. also had a Google Play account and had published its own app, OmniSocial (me.unimania.social.app), the account and the app are both no longer in Google Play.

3. OmniSocial (me.unimania.social.app)

Our own app Quick Check will be updated to scan for these three apps. However, this case may not be over soon as more apps in Google Play are likely to be discovered with Unimania Inc connection. Watch out for it.

Follow us on all critical Android development and security news here.