An Italian spyware vendor has created a fake Whatsapp version for iPhone. This version allows the hackers to get the information of the targeted users by asking them to install few configuration files on their devices. So, if you are an iPhone user, beware of installing any new update of Whatsapp.
Fake Whatsapp Version for iPhone is Created to Hack Data of the User
As per the reports, the fake version of the messaging app is made by surveillance company Cy4Gate. With this, the hackers can get information like the Unique Device Identifier (UDID) and the International Mobile Equipment Identity (IMEI).
A cybersecurity research lab at the University of Toronto has worked with Motherboard and found the fake version of the app for iPhone. The news of this fake version came after a security company ZecOps posted a tweet about getting attacks against users on Whatsapp.
And in iOS world: iOS 14.4 patched two vulnerabilities that may have been exploited in the wild: Including both WebKit, and Kernel: hinting that they might have been used in 1-click attacks. To protect yourself: we advise to update to the latest iOS version. pic.twitter.com/4gFl63FdUK
— ZecOps – A Jamf Company (@ZecOps) January 26, 2021
There was a website seen with a domain config5-dati[.]com, this was cheating the users to install the fake app. Actually, the file was specially configured for the iPhone. It was apparently designed for gathering information about the users and send it to the hackers.
After seeing the URL of the site, Motherboard found multiple groups of domains with the link. The links looked illegal, with Whatsapp branding and professional graphics, and also had instructions for the users to install a configuration file on the iPhone to install the fake Whatsapp.
There is no clear evidence of whether the company Cy4Gate was linked with the fake version of the app or not. There was a group of domains that shared an IP address with config5-dat[.]com. In a group, there was one of the domain names with “cy4gate srl.” With this name, it is said that the Italian company is linked with it.
A spokesperson by Motherboard said,
“We strongly oppose abuse from spyware companies, regardless of their clientele. Modifying WhatsApp to harm others violates our terms of service. We have and will continue to take action against such abuse, including in court”.