The Nigerian Communication Commission, through its Computer Security Incident Response Team (NCC-CSIRT), have raised an alarm on the threat posed by a TikTok viral challenge called “Invisible Challenge”.
The Commission’s Director of Public Affairs, Mr Reuben Muoka, said that hackers are using the challenge to spread an information-stealing malware known as WASP stealer.
WASP, similar to the Vidar Stealer, is the name of an information-stealing malware that steals victims’ passwords, credit card details, cryptocurrency wallets, and personal files and sends them to the threat actor.
Information stolen using WASP malware can be misused to make fraudulent purchases and transactions, steal identities, and more. Depending on the type of hijacked accounts, they can be misused to send spam, deliver malware, access sensitive information, etc.
The NCC-CSIRT explained that TikTok’s Invisible Challenge involves the user recording a video while naked using TikTok’s Invisible Body filter, which in turn replaces the body with a blurry background.
Threat actors exploit the “Invisible Challenge” by offering a fake (trojanized) application that supposedly exposes nude bodies. Users infect their devices with WASP after downloading and installing a fake app.
This fake app is promoted via TikTok videos with a link to download the software, known as “unfilter”. Anyone who, therefore, clicks on the link and tries to download the software is infected with the WASP stealer.
According to NCC, “Suspended accounts had amassed over a million views after initially posting the videos with a link. Following the link leads to the “Space Unfilter” Discord server, which had 32,000 members at its peak but has since been removed by its creators.”
“Successful installation will allow the malware to harvest keystrokes, screenshots, network activity, and other information from devices where it is installed. It may also covertly monitor user behaviour and harvest Personally Identifiable Information (PII), including names and passwords, keystrokes from emails, chat programs, websites visited, and financial activity. This malware may be capable of covertly collecting screenshots, video recordings, or the ability to activate any connected camera or microphone,” the NCC-CSIRT team explained.
The Team recommended practising good password hygiene by adopting measures like using a password manager and avoid clicking on suspicious links, as well as installing anti-malware software on all of your devices.
How to avoid installation of malware
- Always download softwares from reliable sources, that is, official websites and stores.
- Avoid using P2P networks, shady pages, third-party downloaders, free file hosting pages, and similar sources to download apps or files.
- Keep the operating system and installed programs updated.
- Never use third-party tools to update or activate any software.
- Do not trust advertisements and links on suspicious web pages.
- Examine emails containing links or attachments before clicking/opening them.
1 Comment
Pingback: NCC warns Android device owners of yet another dangerous malware, Schoolyard Bully Trojan - Innovation Village | Technology, Product Reviews, Business