Cybersecurity researchers have identified a coordinated campaign involving 131 WhatsApp Web automation extensions used to spam Brazilian users and bypass anti-spam controls. This operation exploits Chrome extensions to send bulk messages, with links to malware like the Maverick banking trojan. #WhatsAppWeb #MaverickTrojan
Keypoints
- The campaign employs 131 rebranded Chrome extensions to automate WhatsApp messaging for spam.
- These extensions are created by a franchise model under βWL ExtensΓ£oβ and βWLExtensaoβ.
- Extensions claim to offer CRM features but are used for mass outreach and bypassing platform rules.
- DBX Tecnologia markets a white-label program for rebranding and reselling these extensions.
- Indicators of ongoing activity include recent updates and extensive circumvention of WhatsApp anti-spam measures.
Read More: https://thehackernews.com/2025/10/131-chrome-extensions-caught-hijacking.html