FlyTrap has been hijacking Facebook accounts of users in 140 countries by stealing session cookies. More than 10,000 Android users in 144 countries fell victim to the social engineering threat. The threat actor used malicious applications with high-quality design, distributed through Google Play and third-party Android stores. The numbers come straight from the command and control server, which the researchers were able to access because the database with the stolen Facebook session cookies was exposed to anyone on the internet. With a few modifications, it could turn into a more dangerous threat for mobile devices, the researcher says.
Source: https://www.bleepingcomputer.com/news/security/flytrap-malware-hijacks-thousands-of-facebook-accounts/