The Indian Computer Emergency Response Team (CertIn) issued a warning on June 28 about a large-scale malware campaign targeting WhatsApp web and desktop users. The campaign involves malicious attachments that could grant unauthorized access to users' devices if opened, even if the attachments appear to come from trusted contacts, CertIn said according to livemint.com.
CertIn's alert was based on findings from cybersecurity firms Kaspersky and Securelist, which identified the malware distribution method. The agency urged users to exercise caution and avoid opening any unexpected attachments on WhatsApp web or desktop platforms, regardless of the sender's identity. The warning highlights the risk of cybercriminals exploiting trusted communication channels to compromise devices.
This advisory comes amid growing concerns over cyber threats exploiting popular messaging platforms. WhatsApp web's widespread usage makes it a significant target for malware campaigns aiming to infiltrate personal and professional devices. Similar campaigns have previously targeted messaging apps, underscoring the need for vigilance and robust cybersecurity practices among users and organizations.
CertIn's statement serves as a reminder to users to verify attachments before opening and maintain updated security measures. The agency's alert was published on June 28, emphasizing immediate caution for WhatsApp web and desktop users across India to prevent potential device compromise.