A report brings It recently come to front that hackers made a fake version of WhatsApp to dupe iPhone users and gather their sensitive information.
This fake version of WhatsApp has been found to be linked to an Italian surveillance agency “Cy4Gate” and was found by a cybersecurity analysis lab on the University of Toronto, Citizen Lab, and Motherboard.
As reported by Vice reveals that the cyberattack involves tricking folks into installing configuration files or “Mobile Device Management”, that are able to download malware within the targeted system. It states that the phishing web page with the domain config5-dati[.]com was tricking iPhone users to obtain the app but was actually a configuration file for the iPhone device.
The web page was additionally designed in a manner that it looked just like an official WhatsApp web site with WhatsApp branding and real graphics. It asks folks to click on the download button and follow the directions as said on the page. All the data on the phishing website is written in Italian.
The motherboard used data from totally different cybersecurity vendors together with DomainTools and RiskIQ and located a number of clusters of domains attached and linked to the one publicly shared.
The config5-dati[.]com area was discovered to share encryption certificates with other relatively named domains and revealed config4-dati[.]com, config3-dati[.]com, and config6-dati[.]com.
A WhatsApp spokesperson responded: “To help keep chats protected, we suggest that folks download WhatsApp from the app store for their phone. As well as, we might temporarily ban individuals utilizing modified WhatsApp clients we detect to help encourage individuals to download WhatsApp from an authoritative and safe source”.
WhatsApp spokesperson additional mentioned that “we strongly oppose abuse from spyware companies, no matter their clientele. Modifying WhatsApp to harm others violates our terms of service. We've and will proceed to take action in opposition to such abuse, including in court”.
This fake version of WhatsApp has been found to be linked to an Italian surveillance agency “Cy4Gate” and was found by a cybersecurity analysis lab on the University of Toronto, Citizen Lab, and Motherboard.
As reported by Vice reveals that the cyberattack involves tricking folks into installing configuration files or “Mobile Device Management”, that are able to download malware within the targeted system. It states that the phishing web page with the domain config5-dati[.]com was tricking iPhone users to obtain the app but was actually a configuration file for the iPhone device.
The web page was additionally designed in a manner that it looked just like an official WhatsApp web site with WhatsApp branding and real graphics. It asks folks to click on the download button and follow the directions as said on the page. All the data on the phishing website is written in Italian.
The motherboard used data from totally different cybersecurity vendors together with DomainTools and RiskIQ and located a number of clusters of domains attached and linked to the one publicly shared.
The config5-dati[.]com area was discovered to share encryption certificates with other relatively named domains and revealed config4-dati[.]com, config3-dati[.]com, and config6-dati[.]com.
A WhatsApp spokesperson responded: “To help keep chats protected, we suggest that folks download WhatsApp from the app store for their phone. As well as, we might temporarily ban individuals utilizing modified WhatsApp clients we detect to help encourage individuals to download WhatsApp from an authoritative and safe source”.
WhatsApp spokesperson additional mentioned that “we strongly oppose abuse from spyware companies, no matter their clientele. Modifying WhatsApp to harm others violates our terms of service. We've and will proceed to take action in opposition to such abuse, including in court”.
Post A Comment:
0 comments: