Hackers are exploiting WhatsApp to spread the Sorvepotel malware in Brazil, primarily targeting enterprises and spreading rapidly through infected contacts. The malware’s main goal is to deliver banking trojans and steal sensitive information, focusing on government and financial sectors. #Sorvepotel #BrazilCyberThreats
Keypoints
- Hackers use WhatsApp to distribute the Sorvepotel malware via phishing zip files.
- The malware detects WhatsApp Web activity to prevent detection and aid propagation.
- Infections spread quickly as infected contacts automatically share the malicious files.
- The campaign mainly affects Brazilian government, finance, manufacturing, and education sectors.
- Related payloads like Maverick.StageTwo and Maverick.Agent target banking and credential theft.
Read More: https://therecord.media/brazil-malware-whatsapp-sorvepotel