There is no pink version of WhatsApp. In fact, a new scam is circulating that affects the most popular messaging app in the Western world. She was spotted by security researcher Rajshekhar Rajaharia, who promptly denounced her on Twitter. But how does the malware related to the alleged new version of WhatsApp spread if it actually cannot be installed on the phone?
“Download pink WhatsApp”, how the new scam works
Rajshekhar Rajaharia explained that the fake app, represented by the classic WhatsApp icon with pink instead of green, is nothing more than a malicious Android app that exploits the application name of the Facebook ecosystem to sneak into users' devices and steal their sensitive data.
Rajaharia showed how it works through a video. Basically, users receive a link via SMS inviting them to download a version of WhatsApp that promises to change the color of the interface from green to pink. However, once the link is clicked, the app disappears from the main screen of the device and remains active in the background, stealing the victims' personal data. Not only. The fake app manages to take control of the address book and therefore send the same fraudulent link to all the contacts present.
Pink WhatsApp scam, how to defend yourself
Rajaharia then gave some tips to make phones affected by the virus safe again. First of all, you must immediately proceed with the installation of the 'pink WhatsApp'. Subsequently, all active sessions must be closed directly from the WhatsApp Web / Desktop section, accessible from the settings of the official app. After that, browser memory cleaning is required. Finally, be wary of suspicious messages urging you to click on links or inviting you to install unlikely applications.
The name of WhatsApp is often exploited by hackers to create scams. Last February, for example, an attack hit several iPhone owners in Italy: fake websites had been set up to be identical to WhatsApp, so as to push users to install a fake app to spy on the contents of the phones.
The risk for those who did not rely on the official store at the time of installation is not insignificant: the malware remotely sends data such as the SIM and device identification code, which are used to carry out computer scams.