Η application WhatsApp message exchange ended this year with ten years of operation. Some Criminals of cyberspace have decided to take advantage of the anniversary and deceive them usersto make a profit.
ESET researchers received one message, which was supposed to come from WhatsApp. The message said that the application offers 1000GB users free of charge for surfing in Internet, as a gift for ten years of operation.
In fact, the message was a scam and not very convincing.
The GB offer for 10η Anniversary of WhatsApp is not very unusual or suspicious. So, a careless user could easily be dragged.
What does the message say?
The message reads: "WhatsApp Offers 1000GB Free Internet!" And is accompanied by a link, which is supposed to contain more details. The link is the first thing to watch out for. It's not an official WhatsApp domain. However, many businesses use third parties to promote their bids and so may confuse users.
If someone opens the link, they will find a page with the WhatsApp logo that reads: “We offer you 1000 GB free internet without Wi-Fi! On the occasion of 10th anniversary of WhatsApp ”. The text is accompanied by one warning, saying that there has been a limited number of rewards. It also asks users to answer some questions. The first is about how they discovered the offer.
As the user begins to answer the questions, it appears a popup that says you should share this message with 30 other users of WhatsApp in order to receive the offer.
Is there a malicious program installed?
According to ESET researchers, there is no evidence that the link itself is installing someone malicious software or that he steals personal information. At present, the hackers exploit fake ads, which bring them revenue.
In the meantime, the domain used by the fraudsters is also used to exploit other companies such as Adidas, Nestle and Rolex.
Can WhatsApp Do Something to Prevent Fraud?
Thornton-Trump, chief security researcher at Amtrust International, argues that free of charge services and products are harming privacy and cyber-security.
According to ESET, WhatsApp's original scam was not meant to steal credentials. This, however, does not mean that he could not do it afterwards. It could easily be used to steal credentials in WhatsApp and as many people use the same codes access and in other accounts, hackers could gain access there as well.
All that WhatsApp could do is inform its users that it is a scam and give some tips on how to protect themselves. Education is the only hope.