Fake Android App Used by Hackers to Access WhatsApp Data

WhatsApp users on Android are being cautioned about a fraudulent Android application that is being utilized to target and exploit victims. According to a cybersecurity company, a malicious app named SafeChat is being employed to pilfer data from individuals in countries such as India. Cyfirma, the firm responsible for this information, explains that SafeChat is essentially a sophisticated malware that masquerades as a messaging application.

“Our initial technical analyzes revealed that APT Bahamut is behind the attack. The nature of this attack, as well as previous incidents involving APT Bahamut, possibly suggest that it was carried out to serve the interests of a single nation-state government,” the report stated.

Shafe Chat is believed to be a variant of “Coverlm”, known for stealing data from popular messaging apps such as Telegram, Signal, WhatsApp and even Messenger. The biggest disadvantage of malware is that it somehow manages to gain more access to the device, which is a greater threat to the user.

The agency notes that when you install this API, the app name Safe Chat will appear on the main screen. When you open this application, the person receives information about using a secure chat platform. Once you reach this stage, the app will now gain access to various features, and that’s the hacker’s cue to launch an attack.

The app’s generic interface makes it look real, making it easier for a hacker to access the device without alerting security checks. The Cyfirma team said that based on past and current targets, it strongly suggests that the APT group is operating in the Indian region.

The public is regularly warned about such apps, and Safe Chat is no different. Users should avoid downloading apps from third-party app stores, and don’t download apps you get from unknown links on the page.