Facebook seems to very concern about unofficial apps and treat them as "phishing"

[kowith337]

Note that I don't trust to use their official apps, however, except MESSenger Lite because this is the one and only official app that not inject ads in your face! (but they may use some part of Google Play Services to keep tracking you, however.)

So as my long road to use alternative apps of Facebook, now I'm still not understand about what is risk of phishing that they mean since...

• Some apps (was) banned or removed from Google Play e.g.
  • Disa (was removed on late march, but revived later, however.)
  • Frost (1, 2)
• From the reason above, if you've previously used and/or logged in, you were logged out from that app (enforce session expire) and Facebook will notice you when re-login on web browser or from official app that you account are in risk of phishing.
• Depend on luck that your account will be lockdown and need to...
  • Change password and review past logins
  • Confirm identity (This is a worst way and probably permanent lockdown if it's not your real profile!)