Cyber Blog

Microsoft is warning about a new cyberattack where hackers are using WhatsApp messages to trick people into infecting their computers with malware. This campaign began around February 2026 and mainly targets Windows users by sending harmful files that look like normal attachments. The goal is to get someone to open the file so the attack can begin.

The attack starts when a person receives a WhatsApp message with a file attached. The file may seem harmless, but it actually contains hidden instructions that can run on a computer. If the file is opened, the malware begins working quietly in the background without obvious signs, making it hard to notice anything is wrong.

After the file is opened, the malware creates hidden folders and installs tools on the computer. These tools are often renamed to look like normal system files, which helps the attack stay hidden. It can also download more harmful software from trusted online services, making the activity appear normal and harder to detect.

As the attack continues, the hackers try to take more control of the system. They may weaken security settings and make changes so the malware stays on the computer even after it is restarted. Eventually, they can install programs that allow them to control the computer from a distance, steal personal information, or add even more harmful software.

This attack is especially dangerous because it relies on tricking people rather than breaking into systems directly. Messages may look like they come from someone familiar or create urgency to make the person open the file quickly without thinking.

Overall, this situation shows how attackers are using trusted apps like WhatsApp in clever ways to get around security. It’s a reminder to be careful with unexpected messages and avoid opening files unless you are sure they are safe.