IBTimes reported that fraudsters and hackers have found an easy and direct way of scamming Indian WhatsApp users by sending them malicious software disguised as documents from governmental entities just to steal their personal information, including banking data, login credentials, and PIN codes.
Given today’s high reliance on technology, account security and the protection of personal information has become a growing concern as hackers leave no stone unturned in finding the latest backdoors, loopholes and security flaws.
Messaging apps like WhatsApp have mass appeal and penetration, and have been platforms for hackers wanting to spread their malware to hundreds of thousands of devices.
However, for now, there isn’t much we can say on the number of viruses spreading around, but, two main versions have been identified and they are of Indian origin, but as is with these things, other hackers pick up on existing loopholes and exploit them.
The way the hackers operate is very tricky, they send files that seemingly include information from governmental bodies, for now, the two major malicious files come as follows; the NDA (National Defense Academy) and the NIA (National Investigation Agency). The files actually contain malware that is capable of accessing sensitive personal information, such as login credentials and various banking data, and the Indian security services have already been alerted about the fraudulent scheme.
Both files come as Microsoft Excel files and are named “NDA-ranked-8th-toughest-College-in-the-world-to-get-into.xls” and “NIA-selection-order-.xls”. If you get any messages including these files, delete the messages and do not attempt to open any of these files.
Similarly, if you get any messages from unknown contacts, especially messages with URLs and links, do not click on any link and simply delete those messages and block those users. If you get spammed a lot then set your WhatsApp to only receive messages from existing contacts.
We also recommend that you don’t sideload any apps onto your Android device unless you trust the source and developer. If you have any questions or concerns about securing your phone and personal information, please comment below.