A dangerous WhatsApp cyber campaign is targeting desktop and web users globally. Attackers use hacked accounts to send malicious files to contacts. They disguise these files as financial or business documents. Malaysia currently reports the highest number of victims.
The hackers name the files “Financial Reports.vbs” or “Account Statement.vbs”. These files contain massive amounts of fake code. They mimic legitimate Windows Update components to hide.
When a user opens the file, Windows runs a malicious script. This script bypasses standard security controls. It then installs remote management software on the computer. This software gives attackers control over the machine.
Kaspersky warns users to verify all unexpected files. You should never open VBS, EXE, or BAT files without checking. Always keep your antivirus software updated to prevent attacks.
