-
WhatsApp for Android Reportedly Testing New Shortcut to Mark All Chats as ‘Read’ At Once27 August 2024 -
WhatsApp for iOS Reportedly Testing AR Capabilities for Call Effects and Filters in Beta26 August 2024
-
WhatsApp Spotted Working on Themes for iOS App; Username PIN Feature Surfaces on Android Beta24 August 2024
-
WhatsApp Working on Feature to Block Messages from Unknown Senders; Tests Like Reactions for Status Updates19 August 2024
-
WhatsApp Working on Chat Bubble Theme Picker Feature on Android16 August 2024
Vietnamese Hackers Using ‘Maorrisbot’ to Target Indians in WhatsApp e-Challan Scam: CloudSEK
Scammers are reportedly sending fake eChallan messages over WhatsApp impersonating the Parivahan Sewa or Karnataka Police.
Written by Akash Dutta, Edited by David Delima | Updated: 17 July 2024 19:35 IST
Photo Credit: Reuters
WhatsApp fake e-Challan scams have reportedly led to fraudulent transactions exceeding Rs. 16 lakh
Advertisement
WhatsApp e-Challan scams are targeting users India using Maorrisbot, a new form of technical malware, according to a cybersecurity firm. This is a relatively new type of scam that is reportedly backed by a large, organised effort. So far, the malware is said to be affecting only Android devices, and no impact has been seen on iOS or other Apple devices. The scam begins like a typical phishing scam, but once the malware is deployed on the victim's device, it acts as a trojan.
WhatsApp e-Challan Scams Using Maorrisbot to Target Indian Users
A new CloudSEK report details how the new malware dubbed Maorrisbot is used by hackers based in Vietnam. The firm states that a highly technical Android malware campaign is currently being uses to target users in India through fake traffic e-Challan messages disseminated via WhatsApp.
At the onset, the scammers impersonate the Parivahan Sewa or Karnataka Police and send messages to people asking them to pay their challan (traffic violation fine). These messages contain details of a fake e-Challan notice and a URL or an attached APK file.
The scammers trick the victim into clicking the link to pay the fine, and once that is done, the Maorrisbot is gets downloaded on the device. However, the report states that it is disguised as a legitimate application, which could mislead unwary users.
The fraudulent message sent to victims by the hackers
Photo Credit: CloudSEK
After being installed, the malware begins requesting multiple permissions such as access to contacts, phone calls, SMS, and even to become the default messaging app. If the user allows these permissions, the malware begins intercepting OTPs and other sensitive messages. It can also use the data to log in to the victim's e-commerce accounts, purchase gift cards, and redeem them without leaving a trace.
The cybersecurity firm also found that the scammers use proxy IP and maintain a low transaction profile to avoid detection. The researchers believe the attackers are Vietnamese based on conversations and IP location — the purported hacker's IP address was traced to Bắc Giang Province in Vietnam.
CloudSEK claims that 4,451 devices are known to be compromised after installing the malware. The hackers have reportedly used 271 unique gift cards to steal more than Rs. 16 lakh from victims. Gujarat and Karnataka have been identified as the most affected region.
The security firm recommends Android users use well-known antivirus and anti-malware software, limit app permissions and regularly review them, and install apps only from trusted sources. Further, the firm also highlights monitoring suspicious SMS activity, regularly updating the device, and enabling alerts for banking and sensitive services.
Comments
For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.
Related Stories
Vietnamese Hackers Using ‘Maorrisbot’ to Target Indians in WhatsApp e-Challan Scam: CloudSEK
Advertisement
Follow Us
-
01:11
Infinix Note 40 Series Racing Edition: A BMW-Inspired Powerhouse -
02:05
Gadgets 360 With Technical Guruji: News of the Week [August 24, 2024] -
01:58
Gadgets 360 With Technical Guruji: Did You Know? [August 24, 2024] -
02:44
Gadgets 360 With Technical Guruji: First Look at Google Pixel 9 and Pixel 9 Pro XL -
02:06
Gadgets 360 With Technical Guruji: OnePlus Buds Pro 3 Debuts in India
Popular on Gadgets
- AI
- iPhone 16 Leaks
- Apple Vision Pro
- Oneplus 12
- iPhone 14
- Apple iPhone 15
- OnePlus Nord CE 3 Lite 5G
- iPhone 13
- Xiaomi 14 Pro
- Oppo Find N3
- Tecno Spark Go (2023)
- Realme V30
- Best Phones Under 25000
- Samsung Galaxy S24 Series
- Cryptocurrency
- iQoo 12
- Samsung Galaxy S24 Ultra
- Giottus
- Samsung Galaxy Z Flip 5
- Apple 'Scary Fast'
- Housefull 5
- GoPro Hero 12 Black Review
- Invincible Season 2
- JioGlass
- HD Ready TV
- Laptop Under 50000
- Smartwatch Under 10000
- Latest Mobile Phones
- Compare Phones
Latest Gadgets
- HMD Barbie Phone
- Vivo T3 Pro 5G
- Realme 13 Pro Extreme Edition
- Infinix Note 40 Pro+ Racing Edition
- Infinix Note 40 Pro Racing Edition
- Vivo Y18i
- Tecno Spark Go 1
- iQOO Z9s Pro 5G
- Asus Zenbook S 16 OLED
- Asus Vivobook S 14 OLED
- Poco Pad 5G
- Redmi Pad SE 8.7
- Redmi Watch 5 Active
- Google Pixel Watch 3
- Xiaomi X Pro QLED 65-Inch
- Xiaomi X Pro QLED 55-Inch
- Sony PlayStation 5 Slim Digital Edition
- Sony PlayStation 5 Slim
- Lloyd 1.5 Ton 5 Star Inverter Split AC (GLS18I5FWRBW)
- Daikin 1.5 Ton 3 Star Inverter Split AC (FTKC50UV16V+RKC50UV16V)
- About Us
- Sitemaps
- Feedback
- Archives
- Contact Us
- RSS
- Advertise
- Career
- Privacy Policy
- Ethics
- Editorial Policy
- Terms & Conditions
- Complaint Redressal
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
