• Source:IANS
Add as a preferred

Telegram, a popular instant messaging network that receives new security updates regularly, is reportedly not secure. According to cyber security analysts, the new version of the Android application has been discovered to be dangerous and capable of stealing the device's data.

According to a report citing cyber-security firm Check Point, the program has malware that can sign the victim up for various types of paid subscriptions, make in-app purchases, and even steal login information. Harmony Mobile recognised the malicious version of the software, which is reported to be laced with malicious code linked to Trojan Triada.

The malware collects device data, establishes a communication channel, downloads a configuration file, and then waits for the remote server to provide it with the payload.

Modified versions of mobile applications could provide more features and customizations, cost less money, or be accessible in more nations than their original version. Their offer may be alluring enough to persuade uninformed people to download them from unreliable external program shops. The malicious software poses as Telegram Messenger 9.2.1.

"This Triada trojan, discovered in 2016, is a modular backdoor for Android that provides admin capabilities to download other infections," the report said.

"The risk of installing changed versions stems from the fact that the user has no way of knowing what changes were made to the application code. To be more specific, it is unknown what code was inserted and whether it is malicious," the team noted.

It shares the same icon and package name as the original Telegram program (org.telegram.messenger). When Telegram is launched, the user is prompted to authenticate by entering their device's phone number and granting the program phone rights.