Hackers have found a new way of stealing banking login details using WhatsApp. The malware targets Android users and spreads through legitimate-looking word documents sent via WhatsApp that could in turn steal sensitive information from users, such as online banking credentials and other information. These “WhatsApp malware” have only been discovered in India so far.
The WhatsApp messages contain names of important organizations in the region including NDA (National Defense Academy) and NIA (National Investigation Agency). Hackers are taking advantage of these two important organizations to convince users to click on the message attachment. The documents that circulate via messages are in Excel format, Word and PDF files. The documents are able to access personal data on the phone, such as banking credentials and PIN codes.
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street