A fake version of WhatsApp is circulating, stealing accounts and personal information from thousands of users. Analysts at the cybersecurity firm Kaspersky Lab shared the report.
The unofficial version is known as
This unofficial version is known as “YoWhatsApp,” and it is a fully functional messenger app that steals user account access and credentials. It even has the same permissions as conventional WhatsApp and is promoted through advertisements on other scam applications like Snaptube and Vidmate.
However, unlike the original WhatsApp, YoWhatsApp allows you to link two cell numbers to a single account and includes added capabilities such as anonymous texting, reading deleted messages, and password-protecting chats.
The latest version of YoWhatsApp (v2.22.11.75) is collecting WhatsApp keys, allowing attackers to take control of your account, according to Kaspersky experts. The developer’s remote server receives the stolen WhatsApp keys.
Although it is unknown whether these keys have been used in any attacks thus far, they are nonetheless causing for concern because they can lead to account takeovers, data leaks, impersonation of close contacts, and other issues.
The Triada Trojan is implanted in the app, leaving an open backdoor for the software. It can take advantage of app permissions to sign up for paid subscriptions without your awareness.
Another fake version of WhatsApp
Other fake version of WhatsApp exist, one of which is known as “WhatsApp Plus.”It includes the same harmful features for account theft and more.
Fortunately, neither of these apps is available on the Google Play Store, thus at the time of writing, they should not be able to damage most users.
