Categories: Digital LifeNewsTech

New malware spreads itself by auto replying to all of your WhatsApp messages

Have you received a WhatsApp message with a suspicious link embedded? Whatever you do, don’t click on that link. The reason: a new wormable malware has been spreading on Android devices via WhatsApp, as reported by The Hacker News. 

According to security ESET malware researcher Lukas Stefanko:

This malware spreads via victim’s WhatsApp by automatically replying to any received WhatsApp message notification with a link to [a] malicious Huawei Mobile app,

So, how does this malware spread and infect other users? According to Stefanko, the malware uses WhatsApp’s quick reply feature to send messages with the malicious links as replies.

These links redirect potential victims to a convincing web page that resembles Google’s Play Store. It then prompts users to download and install a fake Huawei app. This malicious app then prompts users to grant it permission to read notifications as well as run in the background.

In addition, it also asks users to allow it to draw over other apps. If you are not familiar, this basically allows the malware-ridden app to overlay itself on top of other apps running on the device. This then allows it to capture and steal all your credentials like usernames and passwords.

Stefanko notes the malware only sends one message per hour to the same contact. This is done, so the app does not arouse suspicions at first and scarily enough, it remains operational as long as possible before it being detected and removed.

He added that the contents of the message and the link to the malicious app are fetched from a remote server. This means the malware can be used to redirect unsuspecting victims to other malicious websites and apps.

In its current form, the malware is only capable of sending automatic replies to other WhatsApp contacts. However, this could potentially be extended to other messaging apps that support Android’s quick reply function.

The malware researcher said this is the first time he has encountered an Android malware that can spread itself via WhatsApp messages. He added that the malware could potentially be spread through other forms of messaging like SMS, email, social media, groups chats and more.

This underscores the need for users to stick to only trusted sources when downloading third-party apps. Always verify that the app you are downloading is actually made by a genuine developer. Also, scrutinise every permission the app requests before granting it.

If you are interested to learn how the malware works, have a look at Stefanko’s Youtube video below:

[SOURCE]

Related reading

Recent Posts

Mforce.Cas: Last call to enjoy RM2,400 rebate on QJ Motor, Yadea, and Zeeho electric motorcycles

The Mforce Electric Motorcycle Incentive Program (Mforce.Cas) will conclude on 15 July. Originally announced back…

11 hours ago

CSOs call Freedom of Information Bill ‘incompetent’, say it preserves secrecy over transparency

Malaysia's long-awaited Freedom of Information (FOI) Bill was supposed to make it easier for the…

15 hours ago

NanoMalaysia: Malaysia’s upcoming homegrown EV battery can help deliver over 600km of range

Malaysia will soon kick off the production of its first locally developed EV battery cell.…

15 hours ago

Why Malaysia’s growing data centre industry may need solar-plus-BESS

Malaysia has secured billions of ringgit in data centre investments over the past few years,…

18 hours ago

You can now buy Firsty travel eSIM through GXBank app: Here’s how

GXBank has announced a new partnership with Firsty, allowing customers to purchase the telco’s travel…

19 hours ago

The OPPO Reno16 Pro 5G Lands in Malaysia: A Look at the New 200MP All-in-One Content Studio

This post is brought to you by OPPO. OPPO Malaysia has officially expanded its mid-range…

20 hours ago

This website uses cookies.