If you are such an active user of WhatsApp as to have installed some unofficial modification of the most popular messaging application in the world on your phone, you are interested in continuing reading this article. And not because we are going to explain a few tricks to get the most out of it, but because any of these applications may be putting the integrity of your phone at risk.
According to Dr. Web antivirus analysts, since January there has been a new Trojan that is attacking phones with the Android operating system of users who have installed applications such as 'GBWhatsApp', 'OBWhatsApp' or 'WhatsApp Plus'. If you are one of them, the most I'm sure you'll uninstall them as soon as possible.
trojan
The problem is occurring through the use of apps like GBWhatsApp, OBWhatsApp or WhatsApp Plus
'GBWhatsApp' offers additional features to the official service like enhanced privacy options, anti-ban or DND mode. WhatsApp Plus is another of the most popular modifications of the instant messaging client because it offers more customization options and content management than the official app.
What is a Trojan?
The Trojan is a type of malware, a malicious program, that behaves like a Trojan horse in the system it manages to infect. The first impression it gives is that of a legitimate program or application, but once executed, it gives the attacker remote access to the computer that has been infected.
|
| Trojan live |
Trojans can delete, block, copy or modify data from the computers they have infected and even steal bank details, install fraudulent applications or alter the proper functioning of the infected computer.
How does the Trojan Android.Spy.4498 work?
The main functionality of this new Trojan, known as Android.Spy.4498, is to steal the content of notifications from other applications. Furthermore, according to the alert launched by Dr.Web, it can also install other applications on our phone, ask us to install certain applications and open non-consensual dialog boxes.
Android.Spy.4498 will ask us for access to handle notifications and read their content. This version of the Trojan mainly attacks applications such as com.sec.android.app.samsungapps, from the Samsung Galaxy Store, or com.android.vending, from the Google Play Store.
As we have told you, the virus can remotely read the content of the notifications of certain apps and also download apk applications without our permission, making you pass, through dialog boxes, for updates to an app that is already installed on our terminal.
The Trojan can also cause the phone to display random and unwanted dialog boxes. When the user clicks ok on any of these notifications, it forces the browser to load a certain website.
To do?
The best thing to do if the Trojan Android.Spy.4498 has infected our phone is to uninstall any of the WhatsApp modifications that may have spread it.
Read also : This could be the end of sharing Netflix passwords
Next, the best protection is to have the phone's operating system updated to its latest version and use an antivirus to remove the Trojan from the system after performing a full system scan.
And, of course, the best weapon to avoid unwanted infections on our mobile phone is to apply common sense and not install suspicious applications or visit potentially dangerous websites.
0 Comments