How hackers exploited a Telegram weakness to send malware file via chat
The Hindu
A report found a weakness in the Telegram app which was then exploited by hackers to send malicious files via chat.
A critical security flaw in the encrypted messaging app Telegram was reportedly exploited by attackers to spread malicious files as harmless-looking videos. Called EvilVideo, the flaw was found in the mobile app for Android and allowed malicious actors to embed malware within videos. The exploit appeared for sale on an underground forum on June 6, 2024, according to ESET’s research team, after which the app disclosed it on June 26. The issue was finally addressed by Telegram in version 10.14.5 released on July 11.
Attackers were able to hide a malicious APK file in a 30-second clip which when clicked on showed a warning saying that the video couldn’t be played and urged them to play it on an external player. When they proceed, users will be asked to okay an installation of an APK file called ‘xHamster Premium Mod,’ through Telegram.
Security researcher Lukas Stefanko explained in a blog that attackers used Telegram’s API to make the payload and that by default media received via Telegram download automatically. So, users will find the malicious payload downloaded as soon as they open the conversation.
While there’s still no news around the culprits of the attack, it is known that the same actor advertised a fully undetectable Android crypter that can reportedly bypass Google Play Protect.
(For top technology news of the day, subscribe to our tech newsletter Today’s Cache)
A spokesperson for the app responded to the ESET report saying the exploit wasn’t a vulnerability on Telegram since it would require users to manually open the video and install the app. They noted that they had received a report about the exploit on July 5 and deployed a server-fix on July 9 on all versions.
A couple of days ago, the company’s founder Pavel Durov said that they’ve touched 950 million active users and aims to cross the 1 billion mark this year. Telegram also plans to launch an app store and an in-app browser with support for Web3 pages later this month.
Part of Aruppukottai West Bypass road opened for public use
Lokesh calls on the Centre to permit CSR funding for R&D in educational institutes, supporting Andhra's Quantum Valley initiative.
Chief Minister Naidu inaugurates the Kanuri-GMCANA Mother and Child Care Centre in Guntur, enhancing maternal and child healthcare.
Farmers urge immediate survey of failed paddy crop
Vizag Mayor Peela Srinivasa Rao claims he was attacked during a GVMC meeting, blaming YSRCP leader Botcha Satyanarayana.
C.J. Roy's tragic death shocks Kerala, marking a poignant moment for Confident Group's 20th anniversary and its employees.
Traffic restrictions and parking arrangements announced for the India-New Zealand T20I match in Thiruvananthapuram from 2 p.m. to midnight.
Join the 36th Annual Farm Fest at Puducherry's Botanical Garden, featuring 40,000 flowering plants and organic farming events.
Udupi-Chikkamagaluru Member of Parliament Kota Srinivas Poojary on Friday, directed M/s Adani Total Gas Ltd., (ATGL) that has license to provide piped natural gas for households and compressed natural gas to automobiles to immediately set up a mother station in Udupi
DGP reviews security arrangements at Medaram jatara, highlights AI-led policing
Join our February 3 webinar on cancer treatment advancements, featuring expert insights and discussions for patients and caregivers.
Vinex Degree College triumphs at The Hindu FIC - IPE College Quiz, securing top two positions in a competitive event.
NCB uncovers a sophisticated drug lab in Mysuru linked to a major trafficking syndicate, seizing drugs worth ₹10 crore.