AI-Powered Malware Attacks WhatsApp Users

Two highly developed malware strains have been massively attacking WhatsApp users for the past 24 hours – one of which is already using artificial intelligence to evade virus scanners. These new threats represent a dangerous escalation in the mobile security landscape.

Today, security researchers from Trend Micro published a critical analysis of the “Water Saci” malware, which now employs AI-supported obfuscation techniques.Simultaneously, the banking Trojan “Albiriox” emerged yesterday, targeting over 400 financial applications. What makes these attacks notably insidious is their origin: they come from trusted contacts.

The campaign, initially focused on Brazilian users, has considerably upgraded its capabilities. Instead of simple ZIP files, criminals are now utilizing a “multi-format strategy” designed to catch even cautious users off guard.

This system operates with various file types: malicious PDFs disguise themselves as invoices or receipts, and HTA files (HTML applications) immediately execute malicious scripts upon opening. However, the core issue is more profound: attackers are leveraging generative AI tools to continuously rewrite their malicious code. The “Natsunagu loader” is so heavily obscured that customary virus protection programs are ineffective.

Many Android users underestimate how quickly modern malware like Water Saci or Albiriox can compromise WhatsApp and banking apps. A free security package explains five crucial protective measures – from disabling auto-download to checking app permissions and implementing biometric app locks – and provides step-by-step guidance through the settings. It’s ideal for anyone wanting to use WhatsApp and mobile banking securely. Download free security package for android

“Through AI-controlled code conversion and multi-stage infection chains, the actors behind Water Saci are rapidly increasing their ability to avoid detection,” researchers state.