WhatsApp Malware Alert: If you use WhatsApp Web or Desktop, you need to be more vigilant than ever. The security agency CERT-In has issued a new advisory warning all users to verify any attachment before opening it. According to reports, cybercriminals are now targeting people by sending malware-laden files from compromised WhatsApp accounts.
Why did CERT-In issue this warning?
The agency's advisory states that a large-scale malware distribution campaign is targeting WhatsApp Web and WhatsApp Desktop users.
In this attack, cybercriminals are sending Visual Basic Script (VBScript)—specifically .vbs files—via direct messages. This advisory is based on reports from Kaspersky and Securelist.
How does this new cyberattack work?
According to the report, attackers first compromise a WhatsApp account. They then use that account to send a malicious .vbs file to the user's friends, colleagues, or family members.
Since the message originates from a trusted contact's account, most people open the attachment without a second thought. This mistake can pave the way for a cyberattack.
What can happen upon opening the file?
If a user opens the malicious file, cybercriminals can cause various types of damage:
Gain remote access to the device.
Steal login credentials and sensitive information.
Install additional malware on the system.
Infect the entire network.
Disrupt business operations.
Cause financial loss.
What advice has CERT-In given to users?
The cyber agency has recommended several important precautions for users, including:
Do not open any unexpected or unsolicited attachments, even if they appear to come from a friend, family member, or colleague. If you receive a suspicious file, first verify it with the sender via a call or a separate message.
Consider a message suspicious if the sender's behavior seems unusual or inconsistent with their usual conduct.
Warnings have been issued previously.
However, this is not the first time. Earlier, noting the rise in AI-based cyberattacks, the agency had advised mobile and computer manufacturers (OEMs) to tighten their security protocols.
Why is caution necessary?
Because nowadays, we use WhatsApp for more than just personal conversations; it has become a crucial medium for office and business communication as well. Consequently, blindly trusting a file—even one that appears to come from a trusted contact—can be risky. Verifying any attachment before opening it is the simplest and most effective way to ensure cybersecurity.
Disclaimer: This content has been sourced and edited from Amar Ujala. While we have made modifications for clarity and presentation, the original content belongs to its respective authors and website. We do not claim ownership of the content.
-
Legs becoming weak in youth, swelling, pain and difficulty in walking
-
What increases the risk of cataracts at a young age? Diabetes is the main reason, know the detailed information provided by expert doctors
-
Why Did Techie Yousuf Imran Quit His Rs 9.4 Cr Google Package? Here’s The Reason
-
Toyota Hilux 2026 India Launch: Premium design, hybrid engine and price details revealed
-
Nothing Phone 4b confirmed with Snapdragon processor ahead of launch
