A WhatsApp malware named WhatsApp Pink has now been updated with the ability to automatically respond to victims’ Signal, Telegram, Viber, and Skype messages.
WhatsApp Pink is a fake app that was first spotted this week. It poses as a “pink” themed version of the legitimate app. The app includes malicious code that allows attackers to compromise a device completely.
Most of the infections were reported by WhatsApp users in the Indian subcontinent. According to security expert Rajshekhar Rajaharia, WhatsApp Pink is able to spread via group chat messages that contain APK download links.
The link shared via group messages directs to a page where visitors can download the WhatsApp Pink APK (WhatsappPink.apk).
Early this year, the ESET malware researcher Lukas Stefanko discovered an Android malware that exhibits wormable capabilities and just like WhatApp Pink, it was spreading through WhatsApp chat messages.
However, this updated version of the Trojan does not send automatic responses only to messages that arrive from WhatsApp. But it can also send replies to messages received in other instant messaging applications.
The Trojan sends these automatic responses to any message that the user receives in applications such as WhatsApp, WhatsApp Business, Signal, Skype, Viber, Telegram.
After the app is installed on the device, when the user clicks on the icon, the app disappears claiming that it was never even installed.
The victim will then receive a message, to which they will have to reply in order to unwittingly cause it to propagate further.
According to the ESET experts, the app is believed to be under development and that more malicious versions might emerge in future.
Those Android users who have installed the WhatsApp Pink app can simply remove it from the Settings and the App Manager submenu.
Image Credits : MakeUseOf