{"id":1423,"date":"2017-02-07T10:34:56","date_gmt":"2017-02-07T10:34:56","guid":{"rendered":"https:\/\/antivirus.comodo.com\/blog\/?p=1423"},"modified":"2020-08-18T23:15:28","modified_gmt":"2020-08-18T17:45:28","slug":"hackers-steal-personal-data-defense-personnel-using-whatsapp-malware","status":"publish","type":"post","link":"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/","title":{"rendered":"Hackers Steal Personal data of Defense Personnel using WhatsApp Malware"},"content":{"rendered":"<p>Hackers have targeted two elite defense organizations in India through Whatsapp. They had distributed two malicious files targeting defense and security personnel of the National Defense Academy (NDA) and the National Investigation Academy(NIA). These notorious virus files are named \u201cNDA-ranked-8th-toughest-College-in-the-world-to-get-into.xls\u201d and \u201cNIA-selection-order-.xls\u201d. They look seemingly authentic and dupe users into opening them.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-3091\" src=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/whatsapp-malware.jpg\" alt=\"whatsapp malware\" width=\"650\" height=\"300\" srcset=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/whatsapp-malware.jpg 650w, https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/whatsapp-malware-300x138.jpg 300w, https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/whatsapp-malware-225x104.jpg 225w\" sizes=\"auto, (max-width: 650px) 100vw, 650px\" \/><\/p>\n<p>&nbsp;<\/p>\n<p>The National Defence Academy (NDA) is the Joint Services academy of the Indian Armed Forces, while the National Investigation Agency (NIA) is a central Indian <a href=\"https:\/\/www.comodo.com\/landing\/secure-government-institutions\/\" target=\"_blank\" rel=\"noopener\">government agency<\/a> to combat terror. Both are important defense organizations. This malware targets Android OS devices and it has the capacity to obtain all types of privileges, gain control of the victim\u2019s Android device and then steal important personal information, login credentials and banking information such as passwords and PIN numbers<\/p>\n<p>This malware has been circulated predominantly as MS excel files, however, officials suspect that the malware could also have been spread as &#8220;.pdf&#8221; and MS Word files. The government has alerted the defense organization personnel about the malicious files doing their rounds. Security officials in India have stated that \u201cIt has been analyzed that the men and women in defense, paramilitary and police forces could be the target groups\u201d.<\/p>\n<p>It is not yet known whether this attack campaign is the work of nation-state actors or a state-sponsored hacking group or just independent hackers. While India had blamed Pakistan for earlier malware campaigns, it has not yet accused its rival this time.<\/p>\n<p>The complete capabilities of this Whatsapp virus are not yet known. However, what is known now is that this malware specifically targets Android devices, but variants may exist that target other operating systems.<\/p>\n<p>WhatsApp is a popular instant messaging service, and hackers use it to distribute different types of malware such as viruses, <a href=\"https:\/\/www.comodo.com\/landing\/wannacry-ransomware-endpoints-protection\/\" target=\"_blank\" rel=\"noopener\">ransomware<\/a>, spyware, trojans, etc.., disguised as typical, harmless files. It is the user who must take adequate precautions. Attachments or links from unknown\/suspicious sources must not be opened. In this case, the file name looked authentic, and it would have fooled many as the file names looked informative and harmless. This demonstrates the necessity of security software to ensure <a href=\"https:\/\/antivirus.comodo.com\/antivirus-for-android.php\" target=\"_blank\" rel=\"noopener\">Android Security<\/a> for Android devices and <a href=\"https:\/\/m.comodo.com\/\" target=\"_blank\" rel=\"noopener\">Mobile Security<\/a> in general.<\/p>\n<p>Earlier, it has been suspected that Russian hacking groups, possibly state-sponsored, had infected the mobile devices of military personnel in Ukraine. This malware provided critical information about the movement and position of Ukrainian Artillery which helped the Russian military to attack these artillery units. Defense personnel should be wary of such possible malware attacks.<\/p>\n<p>Mobile (smartphone) users use their devices to store plenty of personal information and also perform banking transactions. It is hence important that they protect their mobile device with a <a href=\"https:\/\/antivirus.comodo.com\/\" target=\"_blank\" rel=\"noopener\">robust antivirus<\/a> (<a title=\"Comodo Endpoint Security\" href=\"https:\/\/www.comodo.com\/endpoint-protection\/endpoint-security.php\" target=\"_blank\" rel=\"noopener\">endpoint security<\/a>) and secure device management solution. This is all the more important for defense and security personnel.<\/p>\n<p><a href=\"https:\/\/play.google.com\/store\/apps\/details?id=com.comodo.cisme.antivirus&amp;hl=en&amp;af-id=9356\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-1747 size-full\" src=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/10\/Antivirus_for_Android.jpg\" alt=\"Antivirus for Android\" width=\"650\" height=\"250\" srcset=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/10\/Antivirus_for_Android.jpg 650w, https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/10\/Antivirus_for_Android-300x115.jpg 300w, https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2016\/10\/Antivirus_for_Android-225x87.jpg 225w\" sizes=\"auto, (max-width: 650px) 100vw, 650px\" \/><\/a><\/p>\n<p><a href=\"https:\/\/secure.nurd.com\/home\/purchase.php?pid=109&amp;af=16166\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-8604\" src=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2020\/08\/complete-antivirus.png\" alt=\"comodo antivirus\" width=\"650\" height=\"83\" \/><\/a><\/p>\n<p>&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8212;&#8211;<br \/>\n<strong><strong>Related Resources:<\/strong><br \/>\n<\/strong><\/p>\n<p><strong><a href=\"https:\/\/antivirus.comodo.com\/blog\/computer-safety\/five-best-virus-and-malware-removal-tools\/\" target=\"blank\">https:\/\/antivirus.comodo.com\/blog\/computer-safety\/five-best-virus-and-malware-removal-tools\/<\/a><\/strong><\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hackers have targeted two elite defense organizations in India through Whatsapp. They had distributed two malicious files targeting defense and security personnel of the National Defense Academy (NDA) and the National Investigation Academy(NIA). These notorious virus files are named \u201cNDA-ranked-8th-toughest-College-in-the-world-to-get-into.xls\u201d and \u201cNIA-selection-order-.xls\u201d. They look seemingly authentic and dupe users into opening them. &nbsp; The National [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":1557,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7],"tags":[44,17],"class_list":["post-1423","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-comodo-news","tag-android-antivirus","tag-mobile-security"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Hackers Use WhatsApp Malware to Steal Data of Defense Personnel<\/title>\n<meta name=\"description\" content=\"Hackers started targeting two major organizations using WhatsApp malware, which has been circulated predominantly as MS excel files. Stay protected, now.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Hackers Use WhatsApp Malware to Steal Data of Defense Personnel\" \/>\n<meta property=\"og:description\" content=\"Hackers started targeting two major organizations using WhatsApp malware, which has been circulated predominantly as MS excel files. Stay protected, now.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/\" \/>\n<meta property=\"og:site_name\" content=\"Comodo Antivirus Blogs | Anti-Virus Software Updates\" \/>\n<meta property=\"article:published_time\" content=\"2017-02-07T10:34:56+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2020-08-18T17:45:28+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/RF-10486_thb_2.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"225\" \/>\n\t<meta property=\"og:image:height\" content=\"170\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"seo\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"seo\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/\",\"name\":\"Hackers Use WhatsApp Malware to Steal Data of Defense Personnel\",\"isPartOf\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/RF-10486_thb_2.jpg\",\"datePublished\":\"2017-02-07T10:34:56+00:00\",\"dateModified\":\"2020-08-18T17:45:28+00:00\",\"author\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462\"},\"description\":\"Hackers started targeting two major organizations using WhatsApp malware, which has been circulated predominantly as MS excel files. Stay protected, now.\",\"breadcrumb\":{\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/#primaryimage\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/RF-10486_thb_2.jpg\",\"contentUrl\":\"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/RF-10486_thb_2.jpg\",\"width\":225,\"height\":170,\"caption\":\"Ransomware\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/antivirus.comodo.com\/blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Hackers Steal Personal data of Defense Personnel using WhatsApp Malware\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#website\",\"url\":\"https:\/\/antivirus.comodo.com\/blog\/\",\"name\":\"Comodo Antivirus Blogs | Anti-Virus Software Updates\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/antivirus.comodo.com\/blog\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462\",\"name\":\"seo\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g\",\"caption\":\"seo\"},\"url\":\"https:\/\/antivirus.comodo.com\/blog\/author\/seo\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Hackers Use WhatsApp Malware to Steal Data of Defense Personnel","description":"Hackers started targeting two major organizations using WhatsApp malware, which has been circulated predominantly as MS excel files. Stay protected, now.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/","og_locale":"en_US","og_type":"article","og_title":"Hackers Use WhatsApp Malware to Steal Data of Defense Personnel","og_description":"Hackers started targeting two major organizations using WhatsApp malware, which has been circulated predominantly as MS excel files. Stay protected, now.","og_url":"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/","og_site_name":"Comodo Antivirus Blogs | Anti-Virus Software Updates","article_published_time":"2017-02-07T10:34:56+00:00","article_modified_time":"2020-08-18T17:45:28+00:00","og_image":[{"width":225,"height":170,"url":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/RF-10486_thb_2.jpg","type":"image\/jpeg"}],"author":"seo","twitter_card":"summary_large_image","twitter_misc":{"Written by":"seo","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/","url":"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/","name":"Hackers Use WhatsApp Malware to Steal Data of Defense Personnel","isPartOf":{"@id":"https:\/\/antivirus.comodo.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/#primaryimage"},"image":{"@id":"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/#primaryimage"},"thumbnailUrl":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/RF-10486_thb_2.jpg","datePublished":"2017-02-07T10:34:56+00:00","dateModified":"2020-08-18T17:45:28+00:00","author":{"@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462"},"description":"Hackers started targeting two major organizations using WhatsApp malware, which has been circulated predominantly as MS excel files. Stay protected, now.","breadcrumb":{"@id":"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/#primaryimage","url":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/RF-10486_thb_2.jpg","contentUrl":"https:\/\/antivirus.comodo.com\/blog\/wp-content\/uploads\/2017\/02\/RF-10486_thb_2.jpg","width":225,"height":170,"caption":"Ransomware"},{"@type":"BreadcrumbList","@id":"https:\/\/antivirus.comodo.com\/blog\/comodo-news\/hackers-steal-personal-data-defense-personnel-using-whatsapp-malware\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/antivirus.comodo.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Hackers Steal Personal data of Defense Personnel using WhatsApp Malware"}]},{"@type":"WebSite","@id":"https:\/\/antivirus.comodo.com\/blog\/#website","url":"https:\/\/antivirus.comodo.com\/blog\/","name":"Comodo Antivirus Blogs | Anti-Virus Software Updates","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/antivirus.comodo.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/e534eccce9a7e6ced088443c73329462","name":"seo","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/antivirus.comodo.com\/blog\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3b7714e98dafc3a3b391832c0f5e2b406856b62c8e81ad94382c197cdb380790?s=96&d=mm&r=g","caption":"seo"},"url":"https:\/\/antivirus.comodo.com\/blog\/author\/seo\/"}]}},"post_mailing_queue_ids":[],"_links":{"self":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1423","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/comments?post=1423"}],"version-history":[{"count":25,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1423\/revisions"}],"predecessor-version":[{"id":15024,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/posts\/1423\/revisions\/15024"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/media\/1557"}],"wp:attachment":[{"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/media?parent=1423"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/categories?post=1423"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/antivirus.comodo.com\/blog\/wp-json\/wp\/v2\/tags?post=1423"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}