New Delhi. Cybersecurity researchers at ESET have discovered a serious problem in the Telegram app for Android phones. Researchers have discovered a ‘zero-day exploit’ that targets Telegram on Android. Due to this problem, hackers can send harmful files that look like regular videos through Telegram chat. This can also hack your phone. These harmful files can contain anything like malware or Trojans. In June 2024, this exploit was found being sold on a secret online forum.
This is how it works:
This exploit has been used to misuse a flaw named EvilVideo. Hackers use this flaw named EvilVideo to send dangerous files. These 30-second videos look like regular videos. These files are sent in Telegram channels, groups or private chats. Usually when someone receives a video on Telegram, it gets downloaded automatically. That is, if this setting is turned on in a user’s Android phone, then dangerous files get downloaded as soon as the chat is opened.
ESET researcher Lukas Stefanko and his team discovered this vulnerability while investigating a secret online forum. They noticed that a seller was sharing pictures and videos on a public Telegram channel demonstrating how the vulnerability works. ESET then discovered the channel and seized the harmful file for testing.
Their tests showed that the vulnerability works on older versions of Telegram, specifically versions prior to 10.14.5. It appears that the hackers have exploited the Telegram API, a tool used by developers to create and upload content to Telegram, to make these harmful files look like videos instead of regular app files. When a person tries to play the ‘video’, Telegram says it cannot play the video and suggests using another app. If the user agrees, he is tricked into installing a malicious app.
ESET discovered the problem on June 26, 2024 and immediately informed Telegram. However, there was no response at first. ESET again informed on July 4 and this time, Telegram responded immediately and confirmed that they are looking into it. Telegram fixed the problem by releasing a new version 10.14.5 of the app on July 11, 2024. In such a situation, to avoid this flaw, users should update the Telegram app.
Overall, this flaw was a serious threat as it could lead people to download formless files just by opening the chat. But due to the prompt action of ESET and the response of Telegram, the issue has been fixed in the latest app update. To stay safe from such threats, keep updating your apps.
Tags: Cyber Attack, Cyber security company
FIRST PUBLISHED : July 24, 2024, 15:55 IST