When the Trojan gets into Zygote, it becomes a part of every app that is launched on the device. Kaspersky has been investigating the Trida malware in WhatsApp clones over the past year and is especially difficult to detect for two reasons: firstly, the malware modifies a core process in the Android OS that is used as a template for every application, called Zygote. The user’s money is also at risk, as the malware can easily set up paid subscriptions for the victim.” “In particular, malware like Triada can steal an IM account, and for example, use it to send unsolicited messages, including malicious spam. This means that users who choose popular apps and official installation sources, may still fall victim to them”, the Kaspersky researchers wrote. “Cybercriminals are increasingly using the power of legitimate software to distribute malicious apps. Kaspersky suggests that the distribution channels will be closed soon, and says it is likely the companies were unaware malware was being shared. Vidmate and Snaptube did not respond to The Independent’s request for comment before time of publication. Vidmate also lets users download YouTube, Instagram, Facebook, and TikTok videos. Moreover, the attackers could use this access to “add paid subscriptions without the user’s knowledge”.Ī clone of that app, called “WhatsApp Plus”, also spread through the Vidmate app, with similar features and issues. This could allow attackers to see conversations and steal data that could be used for phishing or other cyberattacks.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |