According to cybersecurity researchers at Kaspersky, FMWhatsAppA modified version of the WhatsApp app, it hides dangerous malware. Triada. It is possible to download converted versions of a popular app in alternative app stores to the Play Store and APK stores such as APKMirror.
These applications have been tampered with to offer features not available in the original version. Unfortunately, some of these apps hide malware. “We discovered that the Triada Trojan had infiltrated one of the modified versions of the messaging tool called FMWhatsapp 16.80.0 with an adware development kit (SDK).”Kaspersky explains this in a report published on August 24, 2021.
Like Joker, Triada was designed to loot users’ bank accounts
After infiltrating its victims’ smartphones, “malware collects unique device identifiers (device ID, subscriber ID, MAC address) […] and the information they collect is sent to a remote server.”. Even more worrying is that the Triada malware also allows itself. full access to user SMS.
“FMWhatsapp users give the app permission to read SMS messages” The Kaspersky report points out that this happens during installation. This is where the trap closes. Hackers can then: “Automatically enroll the victim in premium subscriptions even if a verification code is required to complete the process”. Like this, They take money from their victims. The Joker malware, which recently resurfaced in the Play Store, follows suit.
To report, Triada is a Chinese malware that made a lot of news in 2017 and 2019. The software was pre-installed on many Chinese smartphones from low-cost manufacturers such as LEAGOO and Nomu. “We do not recommend using unofficial modifications to applications, especially WhatsApp mods. You may end up with an unwanted paid subscription or even lose control of your account completely.”At the end of its investigation, it warns Kaspersky.
Source : Kaspersky
