If you’re a Facebook user, you may want to change your password as soon as possible out of precaution.
According to a report from Forbes, up to one million Facebook users’ accounts could be compromised after malware apps on Androids and iPhones tried to steal passwords.
The malware was detected over the last year, disguising itself as different kinds of apps, which include fake photo editors, games, health trackers and more, according to Forbes.
All of the malware apps were downloaded from the Apple and Google Play stores.
Most of the apps required a Facebook log-in for app access, and some even had two-step authentication, but Forbes said the app developers could’ve still gotten illegal access to the accounts.
According to Forbes, Meta said it plans to notify Facebook users if their accounts were infected by the malware. Though, it’s unclear how Meta found which accounts were compromised.
Even if you haven’t been notified that your account has been compromised, it’s still a good idea to change your password out of precaution.
If you’re unsure of how to change your Facebook account password, follow this link here for a step-by-step guide.
Meta has contacted Apple and Google about the malware. According to Forbes, of the 400 total malware apps, 45 of them were in the Apple Store and have since been removed.