WhatsApp Scam That Hijacks Account Resurfaces

<p>Rather than vulnerabilities, or a compromise of their services, WhatsApp (Facebook) has a growing issue in keeping its customers\’ confidence. The continuous re-emergence of this forwarding scam from within the app isn’t very surprising. If you consider the increased volume of cybercrime, attackers will inevitably reuse previously successful tactics and campaigns.</p> <p>&nbsp;</p> <p>We have seen the reporting qualifying that over 10 billion credentials have been made freely available on the internet this year alone.  The 100GB “RockYou2021” TXT file leaked 8.4 billion to a dark web forum. The personal data of over 530 million Facebook users was posted in a low-level hacking forum and 700 million accounts have just been released up for sale on RaidForums by a hacker calling himself “GOD User TomLiner.” That is before a single reported breach by companies is accounted for. With that, attackers now have an almost limitless pool of users to go after. </p> <p>&nbsp;</p> <p>This incident exemplifies how a threat actor doesn’t have to be an advanced cybercriminal or nation-state. The bar to entry is very low now as pre-built phishing kits and malware are available for as little as a few dollars online. Your contacts represent a significant part of your digital footprint and exposure. Think about how many people you communicate with every day using WhatsApp. Over the years through all your conversations, there could be significant amounts of sensitive information shared amongst friends and colleagues alike. </p> <p>&nbsp;</p> <p>Names, locations, pictures, addresses, contact numbers are the obvious ones, but how many times have you sent a credit card number or username and password over WhatsApp? The attacker is counting on users’ lack of hygiene within WhatsApp to be able to harvest vast amounts of personally identifiable information (PII), compromise your account, and continue on to the next person in your address book.  </p> <p>&nbsp;</p> <p>Facebook will be challenged to keep customer confidence as it battles a series of press stories and court cases that bring into question the continuous exploitation of vulnerabilities in its app and signalling services,  its data handling, and security practices. The fascinating case of NSO group vs Facebook continues as the courts push for the surveillanceware company to bring to the bar its executives and reveal its methods for compromising the WhatsApp infrastructure and targeting individuals with nation-state-backed surveillanceware. NSO Group has been under litigation by FaceBook for targeting 1400 high profile, high net worth individuals with its Pegasus and Chryasor RATs (remote access trojans) and highly lucrative mAPT’s (mobile Advanced Persistent Threats), allowing its customer the ability to perform espionage against targets and even command and control their devices. </p> <p>&nbsp;</p> <p>Individuals and enterprises alike can’t rely on WhatsApp saying its messaging is encrypted to keep sensitive data safe. More needs to be done both by the consumer and by WhatsApp itself to ensure a truly secure experience within the app. WhatsApp users can be proactive and download a mobile security solution that reduces the risk of falling victim to WhatsApp scams – especially ones that try to phish your credentials or quietly install malware. </p> <p>&nbsp;</p>