hacker use the telegram Messaging app by embedding the code in a dangerous remote trojan called ToxicEye, which researchers say can help you take control of your computer remotely Check Point Software Technologies. How powerful is that? Malware? The ToxicEye Remote access Trojans (RAT) can intrude into your PC, lose its data, allow a hacker to remotely control your system, and also install ransomware, claim the researchers, who have tracked over 130 ToxiceEye cyberattacks in the past 3 months.
According to the researchers, the ToxicEye malware was used to steal sensitive information from systems such as passwords, browser history, cookies and other system information, delete and transfer data, record audio or video, terminate PC processes, steal content from the clipboard and provide keyloggers, etc.
How did the ToxicEye attacks come about?
According to the researchers, the first hackers are creating a Telegram account to work with, as well as a dedicated Telegram bot. This gives them the ability to chat with other users on Telegram, add people to groups or send direct requests by entering the bot’s Telegram username and a query. Next, they bundle the bot token with the ToxicEye RAT or some other malware and send it as an email attachment. An example of the type of infected attachment is a file called “paypal checker by saint.exe” that the researchers revealed. You open this email, which results in your system being connected to the hacker’s Telegram account, which opens a channel for nefarious activity. After opening this email, it doesn’t matter whether you have Telegram installed on your computer or not. Since the Trojan was implanted with the help of an email attachment, it will even be deleted Telegram app Your system does not interrupt the connection between the device and the hacker’s telegram account.