Android WhatsApp users on Android urged to look for new scams

by

Android Warning: Malicious text can install a WORM on your phone and infect friends who also send you messages on WhatsApp

  • Worm is designed to take control of other applications also installed on your phone
  • It displays a fake, but compelling, screen that looks like a legitimate Play Store
  • It asks the user to download a “Huawei Mobile” app, which is also a compelling fake
  • Experts urge people to download only apps from the Google Play Store and not WhatsApp links

By Joe Pinkstone for Mailonline

Posted: | Updated:

Android users are being targeted by malicious software that tricks users into downloading a fake app that is also targeted at friends ’devices via WhatsApp.

The so-called “worm” can only infect a person’s phone if it receives the message itself and clicks on the link it contains.

It then prompts the user to allow various features and permissions. These activate a hidden capability which means that when the phone receives a WhatsApp message, it will respond instantly with a puzzling site link.

The intent of the scam is to bombard people with ads, which generates revenue for criminals, or to trick people into signing up for a subscription service.

However, the technology could also be easily adapted to become more sinister and steal personal information as well as bank details, experts warn.

The worm automatically sends a message to a person who has sent messages to the user via WhatsApp. But he doesn't explain himself more than once an hour to avoid looking like blatant rubbish and says

The worm automatically sends a message to a person who has sent messages to the user via WhatsApp. But he doesn’t explain himself more than once an hour to avoid looking like blatant rubbish and says “Download this app and win your mobile phone”

The message sent automatically is taken offline not just once an hour to prevent it from sounding like blatant spam and reads “Download this app and win the mobile phone”.

The URL that accompanies it makes it look like a Google link to trick the recipient, but it’s more of a hoax.

If a person clicks on the link, a site appears that is a compelling clone of the Google Play Store, but is in fact not legitimate.

Ask the person to download an app called “Huawei Mobile.” This is not a real Huawei app and is made by scammers.

x

x

If a person clicks on the WhatsApp message link, a site appears that is a compelling clone of the Google Play Store (left), but is in fact not legitimate. The person is asked to download an app called “Huawei Mobile”. This is not a real Huawei app and is made by scammers. If a person clicks install and approves the requests (pictured), the cycle continues

HOW TO AVOID ANDROID “FLIGHTS”

The WhatsApp scam that uses a fake Google Play Store screen and a fake Huawei app to trick customers is the first of its kind to be found on mobile devices.

It is about allowing a lot of permissions under the pretense of earning a new phone and unwittingly granting maware control of all phone applications.

Use this ability to automatically reply to WhatsApp messages once an hour per contact. Once on the phone, it is difficult to remove and the device has already been infringed.

The best protection is to prevent and prevent the worm from getting on the phone in the first place.

The best way is to download only apps that are in the legitimate Play Store app.

Don’t trust sites that are accessed through a link; go directly to the Play Store as they are verified and official.

A WhatsApp spokesman told MailOnline: “This is a malicious application that tricks people into downloading it and sending fishing messages using permissions granted by the Android operating system.

“We are informing the domain provider that the fishing service is using to take action and protect itself from abuse.

“We strongly encourage people to never install applications from untrusted sources and never to touch unusual or suspicious links.

“We also encourage people to report messages like this as soon as possible so they can act.”

Lukas Stefanko, a researcher at cybersecurity firm ESET, discovered the error and posted a video showing how it works on YouTube.

Ray Walsh, a technology expert at ProPrivacy, claims the scam can steal personal information and personal information and credentials.

“It seems that the main purpose of malware is to trick victims into falling into an adware subscription scam, which causes the victim to be deceived,” he says.

“This is the first worm attack to spread via WhatsApp messages and what this refers to is that it could actually be expanded to work with other messengers that also take advantage of Android’s quick response feature.

“Users are reminded not to download any app unless they have found it in the official app store and never remember to download any app after clicking on the links in a WhatsApp message.”

Jake Moore, an ESET cybersecurity specialist, encourages people to be cautious and vigilant when sending links on any platform that they don’t recognize or that seem unusual.

“People need to be very careful when receiving any link, but especially when the link is to what appears to be an app store.

‘Although it only works on specific phones, this malware can steal bank passwords or encrypt your phone altogether, which can cause further damage.

“Using WhatsApp to generate this malware works to your advantage, as many people use the messaging platform and will believe that it will be authentic when they see the message for the first time.

“The message from your contacts only increases the perceived verification of someone you trust.”

.Source