Unofficial Telegram App with 100K Installs Pushed Malicious Sites | WHAT REALLY HAPPENED

Unofficial Telegram App with 100K Installs Pushed Malicious Sites

An app styling itself as a more feature-rich unofficial version of Telegram was installed over 100,000 from Google Play only to provide minimum messaging services and to promote malicious websites.

Named MobonoGram 2019, the app used code from the legitimate Telegram messenger and added a few scripts that ran in secret on the infected device to help with persistence and with loading URLs received from the command server.

By the time security researchers found the malicious app, its developer - RamKal Developers, had already pushed five updates to the official Android store.

Comments

SHARE THIS ARTICLE WITH YOUR SOCIAL MEDIA