Fake versions of WhatsApp and Telegram that steal crypto have been distributed

 Fake versions of WhatsApp and Telegram aimed at stealing cryptocurrency have been distributed

 ESET's research team discovered dozens of Telegram and WhatsApp fake websites, targeting Android and Windows users, with Trojan-infected versions of the messaging app.

 Most of the malicious apps were identified as clippers (clipper is a type of malware that steals or alters the contents of the clipboard) and this is the first time ESET has seen the use of this type of Android malware. This is disguised as a messaging app snapshot. Additionally, some of these apps use optical character recognition (OCR) to recognize text from screenshots stored on compromised devices, another first for the software. malicious Android.

 This type of malware is attractive to cybercriminals interested in stealing cryptocurrencies, as online wallet addresses are made up of long strings of characters, and instead of typing them, users tend to copy and paste them. . By using this type of malware, it is possible to intercept the contents of the clipboard and steal any copied crypto wallet addresses.