Cybercriminals want you to download this malicious file on your computer, and it is likely that you will bite.
WhatsApp is one of the applications for mobile most downloaded for Android and also for iOS, an application used by cybercriminals to scam us and access confidential information such as our chat.
That is why cybercriminals increasingly use more elaborate scams on WhatsApp to access our PC or mobile, be it Android or iOS, and read our chats or get hold of each of our files.
And now the Internet Security Office, via the Civil Guard, has indicated that an email is circulating right now that poses as WhatsApp customer service in which it is urged to download your last backup of the conversations and also the call historyand all you have to do is click on a link.
The scam is very simple, cybercriminals try to make you believe that you have available to download a backup of your conversations and also your call history, and offer you a link that, if you click, will cause a file to be downloaded to your computer.
⚠#ALERT ❗ Email campaign detected again impersonating WhatsApp with a message that downloads a #trojan#Don’tPiques pretends to be a backup of conversations and call history and urges you to click on the link to download it https://t.co/2D5QqrfsDX pic.twitter.com/Li7iqdQkMz
– Civil Guard 🇪🇸 (@guardiacivil) September 23, 2022
If you run this file out of curiosity, your computer will be infected, and it remains to be seen if it also affects iOS and Android devices if it were run on the mobile phone itself.
The Internet Security Office points out that if we have downloaded the file but we have not executed it, there is no problem, we simply delete it and that’s it.
The problem would be that we have downloaded the file and executed it, in this case our device will be infected and it is absolutely necessary that we run an antivirus.
Hard to spot WhatsApp scam
It is a fairly elaborate scam, basically because it does not include inconsistencies or spelling errors, on the other hand the date of issue that appears in the email is very close to the day the message is received, including the domain of the sender’s address it even seems to be from WhatsApp, although it is not.
So you have to be careful and if you don’t recognize any email directly you don’t even need to open it, because now cybercriminals know that practically everyone uses WhatsApp.