top of page

Beware of fake WhatsApp versions containing surveillance malware

  • 2 days ago
  • 2 min read

In its latest move to protect user privacy, WhatsApp has issued an urgent warning to hundreds of users regarding the emergence of a fraudulent application. This version is not an official app but rather a tool embedded with dangerous spyware, designed to covertly harvest user information.

Hundreds of users targeted by fraudulent app

WhatsApp's security team stated they discovered approximately 200 users - mostly residing in Italy - who unintentionally installed this unofficial WhatsApp version on their iPhones. This fake application mimics the interface and features of the legitimate version to deceive users, while hiding malicious code within.

Immediately after identifying the risk, WhatsApp proactively logged out affected accounts to prevent data leaks. Simultaneously, the company sent alerts regarding serious privacy risks and recommended that users immediately uninstall the malicious app and return to the official version.

Margarita Franklin, a WhatsApp spokesperson, emphasized that the company's top priority is protecting those who were tricked into downloading the fake application on iOS.

Who is behind the spyware?

According to information from WhatsApp, the culprit behind this fraudulent app is SIO, an Italian software firm specializing in government surveillance tools through its subsidiary, ASIGINT.

This is not the first time SIO has come under scrutiny. Previously, the company was caught distributing malicious Android apps containing spyware known as "Spyrtacus." Their tactics typically involve creating fake messaging apps or customer support tools to compromise target devices.

Notably, using fake applications for surveillance is a long-standing tactic. In some instances, authorities have even received assistance from network carriers to send phishing links to users disguised as service provider notifications to install malware.

Behind this fake application is SIO, an Italian software company, through its subsidiary ASIGINT
Behind this fake application is SIO, an Italian software company, through its subsidiary ASIGINT - Image source: Internet

Decisive action from WhatsApp

In response to this sophisticated attack, WhatsApp is not merely stopping at user warnings. The company announced it is preparing legal proceedings to demand the cessation of all malicious activities by the spyware firm SIO.

This incident recalls a similar scandal from last year. At that time, WhatsApp warned approximately 90 users, including journalists and social activists, that they were targets of spyware from Paragon Solutions. The incident sparked significant controversy in Italy, leading Paragon to cease providing services to the country's intelligence agencies.

The spoofing of popular messaging tools to plant spyware is becoming a tangible and complex threat. To protect themselves, users must remain highly vigilant, downloading applications only from official sources and thoroughly verifying information before installing any software related to personal data.

Reference: TechCrunch


Comments

IPSIP logo transparent.png

IPSIP VIETNAM ONE MEMBER LIMITED LIABILITY COMPANY (IPSIP VIETNAM OMLLC)

Tax code: 0313859600

🏢 SH05.01, B4 Street, Saritown Area, An Khanh Ward, Ho Chi Minh City, Vietnam

  • Linkedin
  • Facebook
  • TikTok
  • Email liên hệ

Our Services

Solutions for SMEs

SOC 24/7

NOC 24/7

IT Support

Cloud Security

Sign up to receive in-depth cybersecurity documents and news from IPSIP Vietnam.

bottom of page