Posted By: ITWiser Webmaster - Yorkshire's IT Specialists
Trojan Spam Claims WhatsApp is Available for PC
Hackers are always coming up with new and inventive ways to dupe people into unknowingly handing over personal information. In one of their latest scams, cybercriminals have decided to capitalise on the popularity of mobile messaging app WhatsApp, claiming that the service – which has 400 million monthly users – is now available for PC.
WhatsApp would be a sure-fire hit with both enterprise and personal users were it ever to arrive on desktop; hackers, of course, know this all too well so have started sending out spam emails encouraging users to download the client by providing a direct link.
According to Kaspersky, who uncovered the scam, the messages say that WhatsApp is ‘finally available’ for PC and – as a way to seal the deal – the recipient has 11 pending invitations from friends already using the service.
Needless to say, if victims do happen to click on the link, they will not be taken to official WhatsApp software, but instead to a hacked server in Turkey, before being redirected to a Hightail account where the Trojan awaits.
“This downloader has some anti-debugging features like UnhandledExceptionFilter() and RaiseException() and, once running, it downloads a new Trojan that is [a] banker itself,” wrote researcher Dmitry Bestuzhev in blog post.
“This time the malware comes from a server in Brazil and has a low VT detection 3 of 49. The recently downloaded banker has the icon of an mp3 file. Most users would click on it, especially after seeing it is about 2.5 Mbps in its weight.
Once running, the malware reports itself to the cybercriminals’ infections statistics console and when open, a local port 1157 sends stolen information in the Oracle DB format. In addition, it downloads new malware into the system; some samples are 10 Mb in size.”
The emails are written in Portuguese and are described by Bestuzhev as ‘classic style’ Brazilian-created malware. The scam has not spread as far as Europe, but as we well know with malware, thing have a tendency to escalate pretty quickly.
To avoid becoming a victim of email malware scams, it is important that you stay alert. If something seems too good to be true then the chances are it is, so always be on the lookout for potentially dangerous emails.
For extra protection against hackers, and for added peace of mind, it is recommended that you install Cloud Web Security and have ITWiser’s advanced antivirus protection and antimalware engine take care of any threats before they are allowed to infect your system.
You can find out more about how Cloud Web Security can protect your PC by following this link.