The personal data of at least one million users of the Facebook social network may fall into the hands of fraudsters. Axios publication became aware of the possible leak.

The Metasecurity team has submitted a report on more than 400 malicious mobile apps that appear to be harmless services and that have been extracting personal data from Facebook users. It is reported that at least one million people were affected by the attacks of the attackers.

As the company says, scammers create malicious programs disguised as ordinary games and photo editors, for example, and then place them in official app stores. After the user installs such an application, he is prompted to register or log in with his Facebook account. If the user chooses the latter, he will be prompted to enter the username and password of his account in the social network. As a result, this data falls into the hands of the creators of the program and they can gain access to the victim’s account.

David Agranovych, Meta’s director of combating cyberthreats, said the security team has so far been unable to determine the exact number of Facebook users whose data has been compromised by scammers.