The Telegram messenger revealed a dangerous virus that attacks Android devices

< img src = "/uploads/blogs/3E/4B/ib-ffkg2ffff_b2715237.jpg" Alt = "in Telegram revealed a dangerous virus that attacks Android devices"/> < P > The Cyber ​​Security Community again beats the safety of Telegram for Android. Recently discovered vulnerability known as Evilloader (continued earlier Evilvideo) allows the attackers to mask harmful software under a regular video file and encourage users to download it from fake sources.

~ ~ ~ < p > about it writes Android Police.

< h2 > How does the new scheme work

< P > According to the Safety Researcher 0x6rs, the attackers distribute files that resemble quite harmless videos. In fact, the hidden file with the extension of .htm is embedded inside them.

< p >When the user tries to play “Video”, there is an error with the message about the inability to play in the application, then Telegram suggests opening the file through “External Browser”. It is at this stage that the harmful code is activated: it can show a fake Google Play page and encourage the loading of harmful software while opening the victim's IP address.

~ < P > This mechanism is based on the previous Evilvideo expression, corrected in the summer. However, Evilloader, according to experts, is not yet closed in Telegram version 11.7.4 Build and is sold in underground forums, starting at least January 15, 2025. ~ ~ ~ < h2 > How to secure from Evilloader

< P > The distribution of the EvilLoader is quite possible if the user has allowed the installation of programs from unknown sources in the default browser settings. So, until Telegram is released with a correction update, it is recommended to turn off installation from unverified sources:

< Ul > < li > go to 'Settings' on your Android device; < li > Click “Appendices”; < li > go to special access settings;

< li > go to & nbsp; “Position of unknown applications”.

< P > Select your default browser and disconnect the “Allow from this Source” switch. Thus, you will complicate the task of cybercriminate nobles and reduce the risks of infection with harmful software. Before the formal correction, it is important to keep caution and carefully check any files received even from familiar contacts in Telegram.