Vietnamese Hackers Exploiting ‘Maorrisbot’ for WhatsApp e-Challan Scam Targeting Indians, Reports CloudSEK

Scammers are reportedly using fake eChallan messages on WhatsApp, impersonating Parivahan Sewa and Karnataka Police.

WhatsApp e-Challan scams have recently been detected targeting Indian users through a new type of malware known as Maorrisbot, according to cybersecurity firm CloudSEK. This sophisticated scam, which appears to be supported by an organized network, primarily affects Android devices. So far, no similar impact has been observed on iOS or other Apple devices. The scam operates through a phishing scheme that uses Maorrisbot as a trojan to compromise victims’ devices.

How Maorrisbot Works in WhatsApp e-Challan Scams

The CloudSEK report reveals that hackers, believed to be based in Vietnam, are deploying Maorrisbot as part of a highly technical Android malware campaign. The scammers initiate the attack by sending fake traffic e-Challan messages via WhatsApp. These messages impersonate official entities such as the Parivahan Sewa or Karnataka Police, urging recipients to pay a purported fine for a traffic violation.

The Scam Mechanism

The fraudulent messages typically contain details of a fake e-Challan notice and either a URL or an APK file attachment. When victims click on the provided link or download the attached file, they are led to believe they are interacting with a legitimate payment portal. Instead, the Maorrisbot malware is silently downloaded onto their device.

Disguise and Deception

Once installed, Maorrisbot operates covertly, disguising itself as a legitimate application. This deceitful appearance is designed to mislead users and make the malware less detectable. The primary objective of Maorrisbot is to gain unauthorized access to sensitive information and potentially compromise the device’s security.

Preventive Measures

Users are advised to be cautious of unsolicited messages requesting payment for fines or other sensitive transactions. It is crucial to verify the authenticity of such messages through official channels before taking any action. Additionally, downloading applications or files from untrusted sources can expose devices to similar malware threats.

Current Impact and Outlook

As of now, the impact of Maorrisbot is limited to Android devices, with no reports indicating its effect on iOS systems. However, given the technical nature of this malware and its organized deployment, it is essential for users to remain vigilant and practice good cybersecurity hygiene to avoid falling victim to such scams.

Conclusion

The emergence of Maorrisbot in WhatsApp e-Challan scams highlights the evolving tactics of cybercriminals targeting Indian users. By staying informed and exercising caution, individuals can better protect themselves from these sophisticated phishing schemes and malware attacks.