Do not open WhatsApp Voice Notes on your computer–latest WhatsApp hack

The latest attempt by malware writers to take over our computers involves WhatsApp and Voice Notes. If you use WhatsApp, please beware.

In January 2015, WhatsApp updated its system to allow users to access WhatsApp from their computer. Once that is done, users can type their messages using the computer’s keyboard, send pics, files and even send those must-have emoji icons. (If you don’t know how to do this, head over to this article).

One of the features that WhatsApp users love is the ability to send Voice Messages or Voice Notes. Instead of typing a message, you can record a quick note and the recipient can listen to it. This feature is also available when using the computer to access WhatsApp.

Another feature WhatsApp introduced is that Voice Call facility where users who are both using WhatsApp can call each other so that they don’t use their cell phone minutes but use Data (beware of the hidden WhatsApp costs  – read more here)

WhatsApp Voice Notes malware

Malware writers are trying to take advantage of these systems by trying to trick users into opening and installing their dodgy software. The hack involves being sent an email that claims that someone was attempting to call you using WhatsApp and you missed their call. They have left you a voice message  which you could listen to by clicking on the attachment. Here is what the email looks like:

Do not open WhatsApp Voice Notes on your computer–latest WhatsApp scam

Why this is a WhatsApp scam ?

WhatsApp does not have a “missed call voice note facility” Therefore even if someone was trying to call you using WhatsApp, you will be notified of a missed call but there is no voicemail option. This entire scam works on the basis that it the sender hopes that people who receive this email and use WhatsApp and use Voice Notes will simply click on the attachment.

This email has all the signs of a phishing mal:

Do not open WhatsApp Voice Notes on your computer–latest WhatsApp scam

1. The sender’s name is WhatsApp but the actual email address is saes@newbakuhotel.com which is clearly not the email of the company.

2. The Zip file is names beasley22.zip which is where the malware is housed.

3. The body of the message refers to Johnny Sowards and a time of 6:24am. This information has no real connection that make any sense.

What to do if you receive this mail ?

Simple. Delete.

Add your comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.