A new WhatsApp worm is sweeping through Brazil, stealing bank logins and crypto keys from ordinary users, security firms warn.

Victims get a message that looks familiar — a delivery note, a government alert, or an invite to a group — and one click can let the threat spread through their contacts while a hidden trojan strips data from their machines.

How The Worm Spreads

According to security reports , attackers send ZIP files over WhatsApp that contain a malicious .LNK shortcut. When opened, that shortcut runs deceptive commands which load more code into memory so little is written to the hard drive.

This “fileless” step helps the malware avoid some antivirus tools. Based on reports, the infection also hijacks WhatsApp Web sessions to send the same bait to the victim’s friends, makin

See Full Page