Cyber Security Authority (CSA) Warns of New WhatsApp Web Malware Targeting Windows Users

Source: Graphic Online

The Cyber Security Authority (CSA) has issued a nationwide alert over a sophisticated malware campaign exploiting WhatsApp Web to spread a dangerous banking Trojan targeting Windows computer users.

According to the CSA, cybersecurity experts have uncovered a new attack that leverages the trust and widespread use of WhatsApp to distribute Astaroth malware, a powerful Trojan designed to steal sensitive financial and personal data.

How the WhatsApp Web Malware Attack Works

In its public advisory, the CSA explained that the attack begins when cybercriminals send malicious ZIP archive files to unsuspecting users via WhatsApp messages. These files are often disguised as legitimate documents or shared with convincing narratives to encourage victims to download and open them.

Once the ZIP file is extracted and the enclosed file is executed on a Windows device, the Astaroth banking Trojan is quietly installed without the user’s knowledge.

“Cybersecurity experts have discovered a new malware attack that uses WhatsApp Web on Windows computers to spread a dangerous banking malware called Astaroth,” the CSA stated.

Silent Account Hijacking and Rapid Spread

After installation, the malware takes control of WhatsApp Web sessions linked to the infected computer. It silently retrieves the victim’s contact list and automatically sends malicious messages to those contacts, allowing the malware to spread rapidly through trusted networks.

“The malware silently connects to WhatsApp Web, where it retrieves the victim’s contact list and automatically sends similar malicious messages to all contacts,” the CSA warned.

This self-propagating technique significantly increases the malware’s reach, as recipients are more likely to trust messages coming from known contacts.

Financial Data Theft and Cybercrime Risks

While spreading in the background, the Astaroth malware carries out extensive data-harvesting operations, with a strong focus on financial information. The CSA revealed that the malware is capable of stealing:

  • Online banking login credentials
  • One-time passwords (OTPs)
  • Browser cookies
  • Keystrokes and other sensitive data

The stolen information can be used to access bank accounts, commit financial fraud, and facilitate further cybercrime, posing a serious threat to individuals and businesses alike.

CSA Issues Safety Guidelines for WhatsApp Users

In response to the growing threat, the CSA has urged the public to take immediate precautions, including:

  • Avoid downloading or opening ZIP files and unexpected attachments received via WhatsApp, even from known contacts
  • Be cautious of messages urging urgent action or downloads, a common social engineering tactic
  • Regularly review active WhatsApp Web sessions and log out of any unfamiliar connections
  • Avoid staying logged in to WhatsApp Web on shared or public computers
  • Keep Windows operating systems, browsers, and antivirus software fully updated

Reporting Cybersecurity Incidents

The CSA also reminded the public of its 24-hour Cybersecurity and Cybercrime Incident Reporting Point of Contact, encouraging victims and concerned users to report suspicious activity and seek professional guidance promptly.

As cybercriminals increasingly exploit trusted digital platforms, authorities stress that user awareness and caution remain the strongest first line of defense.

Kindly Share
0 0 votes
Article Rating
Subscribe
Notify of
guest

0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments
Picture of Akunye A. Michael
Akunye A. Michael
Akunye A. Michael is a self taught digital and Ai enthusiast. He is the CEO of Voice of Buluk, Bulsaway Productions, Chichiiba Farms, and CAPS Digital. He is also a writer, Prompt Engineer, Content Creator, Actor, Social Commentator Digital Marketing Specialist, Financial Educator, and a Filmmaker. Mr. Akunye is knowledgeable in diverse topics giving clarity to his views on issues that matter in society,
Popular
Most Engaged

News in Buluk

Residents Fear Disease Outbreak Over Filthy Dump Site and Dangerous Toilet Facility in Fumbisi
3 weeks ago

Residents Fear Disease Outbreak Over Filthy Dump Site and Dangerous Toilet Facility in Fumbisi

Buluk Speaks Through Social Media: “Fix Our Roads First” — Growing Public Pressure Mounts on Leaders
1 month ago

Buluk Speaks Through Social Media: “Fix Our Roads First” — Growing Public Pressure Mounts on Leaders

Dr. Clement Apaak Launches Major 24-Hour Economy Market Project in Builsa South
1 month ago

Dr. Clement Apaak Launches Major 24-Hour Economy Market Project in Builsa South

Dr. Clement Apaak Commissions Gbedema School Block, Donates 4,348 Furniture Pieces to Builsa South Schools
1 month ago

Dr. Clement Apaak Commissions Gbedema School Block, Donates 4,348 Furniture Pieces to Builsa South Schools

Mahama Appoints Chief of Doninga, Nab Akanbeanab Akanbong, as Ambassador to Ethiopia
1 month ago

Mahama Appoints Chief of Doninga, Nab Akanbeanab Akanbong, as Ambassador to Ethiopia

Agenga 111 Hospital Project in Fumbisi Deteriorating as Rainstorm Destroys Structures
1 month ago

Agenga 111 Hospital Project in Fumbisi Deteriorating as Rainstorm Destroys Structures

General News

UCC Student Death: Police Arrest Suspect as Murder Investigation Intensifies
1 day ago

UCC Student Death: Police Arrest Suspect as Murder Investigation Intensifies

GES Interdicts Bole SHS Teacher Over Alleged Sexual Misconduct with Student
1 day ago

GES Interdicts Bole SHS Teacher Over Alleged Sexual Misconduct with Student

UK Announces Landmark Social Media Ban for Under-16s to Protect Children
2 days ago

UK Announces Landmark Social Media Ban for Under-16s to Protect Children

Mahama’s Approval Rating Soars as 7 in 10 Ghanaians Back His Performance – Global InfoAnalytics
2 days ago

Mahama’s Approval Rating Soars as 7 in 10 Ghanaians Back His Performance – Global InfoAnalytics

GMET Warns of Incoming Rainstorm and Thunderstorms from Togo into Ghana
5 days ago

GMET Warns of Incoming Rainstorm and Thunderstorms from Togo into Ghana

Mob Destroys Forestry Commission Timber Checkpoint Facility in Kintampo
6 days ago

Mob Destroys Forestry Commission Timber Checkpoint Facility in Kintampo

Voce of Buluk   |   Copyright © 2025   |   Powered by CAPS Digital

Scroll to Top