Cursed tapes: Exploiting the EvilVideo vulnerability on Telegram for Android

Tags

External References

• https://www.welivesecurity.com/
• https://otx.alienvault.com/

Description

ESET researchers discovered a vulnerability named EvilVideo that allows attackers to share malicious Android payloads disguised as video files through Telegram for Android. The exploit makes the malicious files appear as multimedia content, tricking users into installing malware. The vulnerability affected Telegram for Android versions up to 10.14.4 but was patched in version 10.14.5 after being reported to Telegram.

Date