WhatsApp users, that message of traffic challan you got may be fake: Check full details

Amidst the constant threat in the cybersecurity landscape a new cybersecurity threat, seems to be targeting WhatsApp users in India. As reported by CloudSEK the malware named ‘Maorrisbot’ is targeting Android users.

This malware is being spread through fake traffic challan messages on WhatsApp. The message eventually tricked people into installing a malicious app, according to a report by CloudSEK.The report further includes details on how the new malware named ‘Maorrisbot’ is used by hackers based in Vietnam.

Beware of ‘Maorrisbot’

The report explained that users received a WhatsApp message that looks like a traffic challan from the ‘Vahan Parivahan’ or Karnataka police. The message then prompts users to install an Android app (.apk file) in order to make the payment for the chalan. Once installed, the app then hides itself and cannot be seen on the home screen. 

But how does ‘Maorrisbot’ affect you? Reportedly, the app asks for extensive permissions, including access to contacts, SMS messages, and phone calls. After installation, the malware steals contacts, SMS messages, and device information. This data is then sent to a Telegram bot controlled by the attackers. Furthermore, the attackers use the stolen information to make financial transactions, such as purchasing gift cards, using the victims’ accounts.

The CloudSEK report further claimed that the majority of the victims are from Gujarat and Karnataka, with most of them using Jio and Airtel services. Over 4,400 devices are expected to have been infected. In addition to this attackers have stolen over ₹16 lakh through fraudulent transactions.Furthermore, the malware is said to be affecting only Android devices, and no impact has been seen on iOS or other Apple devices. 

How can you stay safe?

Early reports suggested that there have been rising concerns about cyber scams. On top of that it seems like AI and deepfake has contributed to these fraudulent activities.  So how can you protect yourself? Here’s how you can protect yourself from such threats:

• You should regularly review and limit app permissions to only what is necessary
• Only download apps from the Google Play Store or other trusted sources
• You should also ensure your phone and apps are updated with the latest security patch
• Try to stay alert for any suspicious SMS activity and enable alerts for financial transactions
• Lastly educate yourself to recognise phishing attempts and be cautious of messages from unknown sources

Follow FE Tech Bytes on Twitter, Instagram, LinkedIn, Facebook.