Hellenic News Portal Logo
Katerina Agapitou: "I get Christian's OK to do what I do"

Microsoft: Cyberattacks via WhatsApp – Malware Distribution Campaign

By Staff
Microsoft: Cyberattacks via WhatsApp – Malware Distribution Campaign
Share on:

Microsoft is warning of a new cyberattack campaign using WhatsApp messages to spread malware. The campaign, which began in late February 2026, targets Windows systems.

Attackers are distributing malicious Visual Basic Script (VBS) files via WhatsApp. When executed, these files create hidden folders in the C:\ProgramData directory and store renamed versions of Windows utilities such as curl.exe and bitsadmin.exe.

The malware uses trusted cloud services, such as AWS, Tencent Cloud, and Backblaze B2, to retrieve payloads and install malicious MSI packages, thus ensuring its persistent presence on the system.

Microsoft urges users to be especially careful with files received via WhatsApp and to ensure that their systems are up to date with the latest security updates.

Tags:

#safety
View all articles tagged with #safety
#WhatsApp
View all articles tagged with #WhatsApp
#Microsoft
View all articles tagged with #Microsoft
#cyberattacks
View all articles tagged with #cyberattacks
#malware
View all articles tagged with #malware
#vbs
View all articles tagged with #vbs
Source: in.gr
Microsoft: Cyberattacks via WhatsApp – Malware Distribution Campaign | Hellenic.News