Cyber-security researchers on Friday revealed a modified version of the popular messaging app Telegram on Android that is found to be malicious and can steal your data.
The malware within the malicious app can sign up the victim for various paid subscriptions, perform in-app purchases and steal login credentials, according to the mobile research team at cyber-security firm Check Point.
The malicious app was detected and blocked by Harmony Mobile. Though innocent looking, this modified version is embedded with malicious code linked to the Trojan Triada.
“This Triada trojan, which was first spotted in 2016, is a modular backdoor for Android which grants admin privileges to download other malware,” the report said.
Modified versions of mobile applications might offer extra features and customisations, reduced prices, or be available in a wider range of countries compared to their original application.
Their offer might be appealing enough to tempt naive users to install them through unofficial external applications stores.
“The risk of installing modified versions comes from the fact that it is impossible for the user to know what changes were actually made to the application code. To be more precise – it is unknown what code was added and whether it has any malicious intent,” the team noted.