Cybercriminals continue to evolve their tactics, and the latest threat sweeping across the UK takes a deceptive form: WhatsApp messages disguised as greetings or formal communication. Unlike traditional malware that is downloaded from suspicious websites or received via email links from unknown senders, this new scam uses multimedia content on WhatsApp to infect devices.
How the Scam Works
Hackers are now embedding malicious software into image and video files that are sent through WhatsApp. These files often come disguised as harmless greetings or messages from unknown contacts.
Technically, this method relies on steganography — a digital technique used to conceal malicious code within the metadata of multimedia files such as images, videos, or audio. Once a user downloads or interacts with the file, the hidden malware is triggered. It begins by connecting to a Command-and-Control (C2C) server, which allows the hacker or hacking group to take remote control of the compromised device.
Why This Is Particularly Dangerous
Once the malware gains access, it can bypass several security layers and operate silently in the background. This includes circumventing one-time passwords (OTPs) and other authentication mechanisms. As a result, hackers can carry out financial transactions, access personal data, steal login credentials, and even empty cryptocurrency wallets — all without the user’s knowledge.
This level of control over a user’s device significantly amplifies the danger, turning a seemingly innocuous media file into a gateway for potentially devastating breaches.
How to Protect Yourself from WhatsApp-Based Malware Attacks
Many of these scams succeed due to a lack of awareness or poor digital hygiene. Here are several measures you can take to reduce your risk:
1. Disable Auto-Download on WhatsApp
Prevent media files from automatically downloading to your device:
Go to Settings > Storage and Data
Under the Media Auto-Download section, disable downloads for photos, videos, and other files.
iOS users may find the settings slightly different, but the principle remains the same — always ensure files are only downloaded with your explicit permission.
2. Avoid Interacting with Unknown Senders
Refrain from opening media or clicking on links from unfamiliar contacts. These are often laced with malware and can trigger infections with a single tap.
3. Manage Group Invitations Carefully
Adjust your privacy settings to restrict who can add you to groups:
Go to Settings > Privacy > Groups
Choose either “My Contacts” or “My Contacts Except…” to limit exposure to unsolicited group invites, which are often used to distribute harmful content.
4. Never Share Sensitive Information on WhatsApp
Even though WhatsApp uses end-to-end encryption, it’s not immune to device-level malware:
Do not share OTPs, banking credentials, or images of payment cards.
Avoid discussing financial transactions on the platform.
Impact on the UK Population
While there are no definitive statistics on the total number of victims, reports suggest the scam is gaining traction. As of April 2025, at least 9 individuals in the UK have filed complaints with Action Fraud, the UK’s national reporting center for cybercrime and fraud. Investigations are ongoing.
With over 3 billion WhatsApp users globally and more than 13 million users in the UK alone, this type of cyberattack could potentially affect thousands more if left unchecked.
Final Word
The digital world offers convenience, but it also brings risks. This latest scam is a stark reminder to stay vigilant and proactive in safeguarding your devices. A few simple steps can make a significant difference in keeping your data and finances secure.
Join our LinkedIn group Information Security Community!
