Kowatek Solar LTD
France VAT compliance
17:59
France VAT compliance
Battery Power Online | Peak Energy, General Motors Partner on Sodium-Ion Cells for Grid Applications
17:54
Battery Power Online | Peak Energy, General Motors Partner on Sodium-Ion Cells for Grid Applications
Why Britain is saying no to hydrogen boilers
17:53
Why Britain is saying no to hydrogen boilers
Who are the companies commercialising large-scale thermal energy storage technologies today
04:32
Who are the companies commercialising large-scale thermal energy storage technologies today
16 Utah Cities Choose to Opt-in to Groundbreaking Clean Energy Program to Bring 100% Clean Energy to Grid
17:51
16 Utah Cities Choose to Opt-in to Groundbreaking Clean Energy Program to Bring 100% Clean Energy to Grid
Themis Powder2Power particle-based CSP begins commissioning in France
18:00
Themis Powder2Power particle-based CSP begins commissioning in France
3 Hours Of Free Power Explained
17:53
3 Hours Of Free Power Explained
Father of Modern Solar Approaches the Next Frontier
17:51
Father of Modern Solar Approaches the Next Frontier
Hacked, leaked, and held for ransom: the worst breaches of 2026 so far
14:40
Hacked, leaked, and held for ransom: the worst breaches of 2026 so far
The optimal internal receiver geometry for high temperature solar fuels
17:59
The optimal internal receiver geometry for high temperature solar fuels

Telegram, WhatsApp Trojanized to Target Cryptocurrency Wallets

A number of websites set up to deliver Trojan horse versions of the WhatsApp and Telegram apps have been observed targeting Android and Windows users.

As ESET security researchers have discovered, most of these apps rely on clipper malware designed to steal or modify the contents of the Android clipboard.

You can read more about clipper malware here: Shein app accesses clipboard data on Android devices

“They all target victims’ cryptocurrency funds, and some target cryptocurrency wallets. ESET malware researchers Lukas Stefanko and Peter Strýček wrote in an advisory on Thursday.

“Additionally, some clippers abused OCR. [optical character recognition] This is the first time we’ve seen the exploit of screen reader technology extracting mnemonic phrases from images stored on the victim’s device. ”

Cybersecurity researchers also said they found a Windows version of the wallet-switching clipper, along with Telegram and WhatsApp installers for Windows packed with remote access Trojans (RATs).

“A RAT, through various modules, gives an attacker control over a victim’s machine.”

From a technical point of view, Stefanko and Strýček explained that trojanizing Telegram is a relatively easy task for attackers because the app’s code is open source.

“On the other hand, WhatsApp’s source code is not publicly available, which means that before repackaging the application with malicious code, attackers can first analyze the functionality of the app in detail to identify specific places to change. We had to identify the .” read the ESET advisory.

Regarding victims, malware researchers say the trojanized versions of the WhatsApp and Telegram apps primarily target Chinese-speaking users.

“Because both Telegram and WhatsApp have been blocked in China for several years. […] Those who want to use these services must resort to indirect means to obtain them,” write Stefanko and Stricek. “Naturally, this is a golden opportunity for cybercriminals to exploit the situation.”

Another malware campaign aimed at stealing cryptocurrencies was recently spotted by Proofpoint.

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *

Address:
 091, Peace Plaza, Asaba, Delta State.
216 DBS Road, Asaba, Delta State.
Start a conversation:

Follow Us Social Media

Facebook Twitter Youtube Instagram

All Rights Reserved. Kowatek Blog by IWUCHI

Home | About Us | Disclaimer | Privacy Policy | Contact Us