Reddit users have recently noticed a new malicious campaign to hoodwink users of messenger WhatsApp. Apparently, some hackers have sent links to poor victims, supposedly leading to the official website of WhatsApp (whatsapp.com), while in reality the links lead to the fake domain шһатѕарр.com.
Clink on the link and one is presented with an invitation to trouble. A "clicker" is redirected to the fake site and made an offer of an exciting app to make messages colourful.
Users are asked to share the link with friends and groups in social networks, ostensibly to make sure that the user is not robot. For all this trouble, victims are "gifted" with adware instead of colored "WhatsApp" messages.
However, in what is surely a relief, Google has already removed the app from the Chrome Store. This is not for the first time that hackers are using international characters and Unicode domain names. Previously, google.com converted into ɢoogle.com.
In April, 2017 Chinese expert Xudong Zheng warned that Chrome, Firefox and Opera are vulnerable to virtually undetectable phishing attacks by which attackers can register fake domains that seemingly indistinguishable from the real resources of Apple, Google, eBay, Amazon and many other companies.
- Christina
Clink on the link and one is presented with an invitation to trouble. A "clicker" is redirected to the fake site and made an offer of an exciting app to make messages colourful.
Users are asked to share the link with friends and groups in social networks, ostensibly to make sure that the user is not robot. For all this trouble, victims are "gifted" with adware instead of colored "WhatsApp" messages.
However, in what is surely a relief, Google has already removed the app from the Chrome Store. This is not for the first time that hackers are using international characters and Unicode domain names. Previously, google.com converted into ɢoogle.com.
In April, 2017 Chinese expert Xudong Zheng warned that Chrome, Firefox and Opera are vulnerable to virtually undetectable phishing attacks by which attackers can register fake domains that seemingly indistinguishable from the real resources of Apple, Google, eBay, Amazon and many other companies.
- Christina