Instagram's "after foot" app, Apple and Google deleted passwords without prior permission

A third party application that can check "after foot" of the person who visited his page in cooperation with the Instagram account is "Who Viewed Your Profile - InstaAgent"is. It is a popular application that won first place in the UK / Canadian App Store and the free app ranking of Google Play, but it is a malicious application that not only logs visitors but also extracts the user's login information and sends it without notice to the outside without permission It turned out that it was an application.

"Who Viewed Your Profile"#InstaagentWill send your Instagram Username and Password to an unknown server!Pic.twitter.com/8 uZJljJdtO

- David L - R (@ PeppersoftDev)2015, November 10

Malicious App 'Insta Agents' Sends Instagram Passwords to Unknown Server, Posts Spam in Users' Feeds - Mac Rumors
http://www.macrumors.com/2015/11/10/malicious-instaagent-instagram-app/

Developer of German application development company PeppersoftDavid L-RAfter installing "Who Viewed Your Profile - InstaAgent", I checked the behavior and found out that I took out the user's user name and password and sent it to the external server. The extracted login information was transmitted in clear text without being encrypted, and also has authority to post images. Instagram does not allow third party applications to post on behalf of users.

Although "Insta Agents" were not very popular in the United States, a huge number of installations have been confirmed in the United Kingdom and Canada. The application has already been deleted with both Google Play and the App Store, but David L-R says "It is the first malware application installed by AppStore for about 500,000 times"Tweets. For Mac Rumors, those installing "InstaAgent" promptly delete the application and call for changing Instagram password and password of another service being used.


The official name of the application deleted this time is "Who Viewed Your Profile - InstaAgent", but there are multiple applications with similar names for Instagram in the app store. originallyInstagram Help CenterWe are warned not to grant access rights to suspicious external applications that violate the community guidelines, so be careful when using external applications.