TECH NEWS

New WhatsApp phishing campaign allows for remote access from a single business document

https://cdn.mos.cms.futurecdn.net/NxmSYU2NX5vmBNv3WeEtKa-1920-80.jpg
  • Kaspersky warns of a WhatsApp phishing campaign spreading malicious VBScript files disguised as business documents
  • Running them installs ManageEngine Endpoint Central, giving attackers remote access; filenames localized boosted global reach
  • Victims span Brazil, India, Mexico, Singapore, UK, Spain, Taiwan, Australia, Russia, Vietnam, and Malaysia; compromise method remains unknown

WhatsApp users beware - there is a phishing campaign ongoing on the platform, seeking to infect your devices with a legitimate, but unsolicited endpoint security platform.

Security researchers Kaspersky recently published a new report detailing a campaign that starts with a compromised WhatsApp account. They could not determine how these accounts got breached but found that they were being used to reach out to the victims’ contacts and share a VBScript file masquerading as business or financial documents.

People who don’t find it strange that their contacts are suddenly sharing business documents, and end up running them, will get ManageEngine’s Endpoint Central,...

Copyright of this story solely belongs to techradar.com. To see the full text click HERE

Read more