WhatsApp scams and viruses return in November: How to avoid them?

Malicious WhatsApp app was detected on Google Play

The new wave of scam tricked millions of Android users^[1] into installing a bogus application called “Update WhatsApp Messenger” at the beginning of November. Crooks managed not only to copy a design and logo of the app perfectly but bypass Google security too. The malicious app was available on Google Play Store and claimed to be developed by “WhatsApp Inc.”

Reddit users reported about a malicious application on the 3rd of November and it was removed from the Google Play the same day. However, during the time it was available, millions of users managed to fall for the scam and download a fraudulent app.

The success of the scam is that the app was labeled as legit WhatsApp product. Scammers used an additional Unicode character that allowed creating additional space in the developer’s name. However, the majority of users are unable to see the difference and extra spacing

The fake “Update WhatsApp Messenger” app worked as an adware-related application that delivered suspicious ads that offered to download various security programs or updates. Of course, changes to the system were also made in order to prevent users from removing this Android virus.

Fake supermarket vouchers spotted spreading via WhatsApp messages

At the beginning of November, WhatsApp users may have received a joyful message about an opportunity to get supermarket vouchers for free. Scammers allured targets with Asda, Tesco, Aldi, Marks & Spencer vouchers.^[2] However, to get them, people had to fill the survey or send the same message to other 20 contacts.^[3]

The false message also includes the link to the website that mimics the original retailer’s site. However, usually, the name is misspelled. Besides, if you decide to enter a provided URL to the address bar manually, you will see that this page is marked as deceptive by popular web browsers and does not exist on the original website.

The malicious website asked to enter personal information, including financial data. Revealing this information to cybercriminals might not only lead to money loss but identity theft too.

Additionally, the malicious website installs tracking cookies that spies your activities on the phone. Latest security reports note that suspicious browser extensions that might display ads or install other malicious apps on the smartphone.

Do not fall for scammers tricks

“Update WhatsApp Messenger” virus and WhatsApp vouchers scam are not the first criminals’ attempts to attack popular messaging app users. Security experts reported about WhatsApp virus versions, such as WhatsApp GhostCtrl virus, WhatsApp voice message Trojan virus, WhatsApp Gold scam, WhatsApp trial service scam, etc.^[4]

There’s no doubt that criminals continue spreading viruses, scams, and hoaxes on WhatsApp because the application has 1.3 billion monthly active users (July 2017 data). Thus, people should be aware of the possible threats and learn how to avoid them:

1. Download and update WhatsApp from the legit stores only. However, you should also read user reviews and check information about the developers to be sure that hackers did not develop it.
2. Read app permissions. Fake apps always require full access to the smartphone, ability to record your calls or collect other sensitive data. If you see such inadequate requests, do not install the app.
3. Be careful with received messages. Scam or phishing messages might claim to be sent from or be affiliated with WhatsApp, ask to forward the message for your contacts in order to avoid legal punishment or account suspension, accept the prize or gift.^[5]
4. Pay attention to received emails. Some scams are spread via emails that pretend to be an alert from WhatsApp. In order to check if the issue is real, you should login to WhatsApp account. If there are any problems or you got a message, you will be able to find it there. If not, you have been just scammed.
5. Check grammar or spelling mistakes. Crooks often leave plenty of them.