HOME
Breaking News

Unofficial WhatsApp Android App stealing users’ accounts

by VARINDIA 2022-10-14
Unofficial WhatsApp Android App stealing users’ accounts

A new version of an unofficial WhatsApp Android application named ‘YoWhatsApp’ has been found stealing access keys, enabling the threat actors to control users’ accounts.

 

Threat analysts at Kaspersky discovered the YoWhatsApp campaign. Kaspersky says that these keys can be used in open-source utilities to connect and perform actions as the user without the actual client.

 

‘YoWhatsApp’ is a fully working messenger app that uses the same permissions as the standard WhatsApp app and is promoted through advertisements on popular Android applications. The app includes additional features over the regular WhatsApp, such as the ability to customize the interface or block access to chats, persuading the users to install the app.

 

While Kaspersky has not stated whether these stolen access keys have been abused, they can lead to account takeover, disclosure of sensitive communications with private contacts, and impersonation to close contacts.

 

Like the real WhatsApp Android app, the malicious app requests permissions, like accessing SMS, which is also granted to the Triada Trojan that's embedded in the app. Kaspersky says the trojan can abuse these permissions to register the victims to premium subscriptions without them realizing it and generate income for the distributors.

See What’s Next in Tech With the Fast Forward Newsletter

SECURITY
View All
T-Mobile confirms breach by Chinese hackers in ongoing cyber espionage campaign

T-Mobile confirms breach by Chinese hackers in ongoing cyber espionage campaign

Helldown ransomware expands its reach, targeting Linux systems and virtualized environments

Helldown ransomware expands its reach, targeting Linux systems and virtualized environments

Sattrix and Cloud IOT sign JV to drive cybersecurity and digital transformation business in Southeast Asia

Sattrix and Cloud IOT sign JV to drive cybersecurity and digital transformation business in Southeast Asia

SOFTWARE
View All
PhonePe & Bharat Connect to announce easy contributions for NPS

PhonePe & Bharat Connect to announce easy contributions for NPS

Elastic collaborates with LG CNS to enable innovation in knowledge management

Elastic collaborates with LG CNS to enable innovation in knowledge management

Veeam announces update to Veeam Backup for Salesforce on Salesforce AppExchange

Veeam announces update to Veeam Backup for Salesforce on Salesforce AppExchange

START - UP
View All
ideaForge Soars Past 550,000 Flights, Reinforcing Indian Drone Leadership

ideaForge Soars Past 550,000 Flights, Reinforcing Indian Drone Leadership

HCLTech and Inspeq AI Join Forces to Promote Responsible AI

HCLTech and Inspeq AI Join Forces to Promote Responsible AI

Whatfix and Deloitte India Partner to Drive Digital Adoption

Whatfix and Deloitte India Partner to Drive Digital Adoption

Tweets From @varindiamag

CIO - SPEAK
Automation has the potential to greatly improve efficiency and production

Automation has the potential to greatly improve efficiency and production

Various approaches are followed to enhance efficiency, productivity, and cost-effectiveness

Various approaches are followed to enhance efficiency, productivity, and cost-effectiveness

Technology can be leveraged in several ways to boost efficiency, productivity and reduce cost

Technology can be leveraged in several ways to boost efficiency, productivity and reduce cost

Start-Up and Unicorn Ecosystem
Tata Elxsi, DENSO, and AAtek Open New Robotics and Automation Lab in Frankfurt

Tata Elxsi, DENSO, and AAtek Open New Robotics and Automation Lab in Frankfurt

Prudential Unveils Global AI Lab in Singapore

Prudential Unveils Global AI Lab in Singapore

HPE delivers its fastest exascale supercomputer El Capitan to Lawrence Livermore National Laboratory

HPE delivers its fastest exascale supercomputer El Capitan to Lawrence Livermore National Laboratory

Cloudera announces new AI Assistant with intelligent capabilities

Cloudera announces new AI Assistant with intelligent capabilities

Futurense Launches India’s First Futurense Leadership Council

Futurense Launches India’s First Futurense Leadership Council

MediaTek Powers India's Digital Future with Latest Innovations

MediaTek Powers India's Digital Future with Latest Innovations

Akamai launches ready-to-deploy, cloud-agnostic application platform

Akamai launches ready-to-deploy, cloud-agnostic application platform

AMD debuts Versal Premium Series Gen 2 SoCs to power data-intensive workloads

AMD debuts Versal Premium Series Gen 2 SoCs to power data-intensive workloads

NXP rolls out pioneering Ultra-Wideband wireless battery management system

NXP rolls out pioneering Ultra-Wideband wireless battery management system

Netpoleon India Partners with Cavisson Systems

Netpoleon India Partners with Cavisson Systems