Simply downloading an image from a WhatsApp conversation could expose your bank account to danger. Fraudsters can embed harmful malware within seemingly innocent image files that are shared as forwarded messages on WhatsApp. Recently, a case surfaced in Jabalpur, Madhya Pradesh, where a 28-year-old man ended up losing close to Rs 2 lakh after downloading what appeared to be a harmless image on WhatsApp. That’s right — even images have become a security risk. So, how does this happen? The answer lies in a method called steganography, which scammers are exploiting.
What is Steganography?
Steganography involves concealing malicious code within image files. One widely used technique is Least Significant Bit (LSB) steganography, where data is hidden in the least significant bit of a media file. Images usually contain three bytes representing the colors red, green, and blue, with the hidden information often placed in the fourth byte known as the ‘alpha’ channel.
When the victim opens the compromised image, the malware is silently installed on their device. This malicious software can then steal sensitive data such as banking information and passwords, and in some cases, grant remote control of the device to attackers. If the target does not open the image right away, scammers might follow up with a phone call to coerce them into accessing the file.
In the Jabalpur incident, the malware not only infiltrated the victim’s phone but also executed transactions by circumventing security protocols like OTP (one-time password) verification. Cybersecurity specialists warn that many antivirus programs focus on identifying unusual behavior and recognized threats, which means they might fail to detect the concealed code embedded within the image file.
How to stay safe?
Users must update WhatsApp to the latest version of the app.
Avoid suspicious looking numbers, especially those who have sent you an attachment on WhatsApp Desktop as it may be unwanted malware.
If you do receive a link from an unknown number, avoid clicking on it and block the contact.
Download applications only from trusted sources like Microsoft Store or Play Store.