Summary: Cybercriminals are targeting users in Malaysia and Brunei with fake wedding invitations to spread a new Android malware named Tria, which steals sensitive information from various apps. The malware is disseminated through private messages on platforms like Telegram and WhatsApp, with the aim of gaining full control over victims’ accounts. Researchers highlight the danger of the stolen data being used for fraudulent activities, including unauthorized access to banking and accounts reliant on email authentication.
Affected: Users in Malaysia and Brunei
Keypoints :
- Tria spreads through invites to fake weddings on Telegram and WhatsApp.
- The malware extracts sensitive information from SMS, emails, call logs, and messaging apps.
- Attackers aim to take control of victims’ accounts to further propagate malware and request fraudulent payments.
- Evidence suggests that the attackers are Indonesian-speaking, with links to a 2023 campaign called UdangaSteal.
- Tria targets a broader range of data compared to previous malware, including emails and messaging apps.
Source: https://therecord.media/hackers-wedding-invitations-southeast-asia