Kaspersky Lab Has Detected A Vulnerability In The Telegram Messenger

Kaspersky Lab Has Detected A Vulnerability In The Telegram Messenger

Kaspersky Lab discovered a zero-day vulnerability in the Telegram messenger, which was used by hackers to infect a Windows application and distribute software for mining. This is stated in the company's message, which was received by the editorial office.

According to experts, the attackers used a breach at least since March 2017. "Kaspersky Lab" notified the messenger developers about the problem, today the vulnerability is closed, "experts say. All cases of exploitation of the software vulnerability were fixed in Russia.

Hackers used the so-called right-to-left override (RLO) attack. RLO is a special non-printing Unicode character that mirrors the direction of characters located next to and is used in texts that are reproduced from right to left, for example, in Arabic or Hebrew. In the Unicode table, the symbol is represented by the code 'U + 202E'.

Hackers used RLO to change the order of characters in the file name and its extension. Thus, the victim of the attack downloaded malicious or spyware from the messenger with the modified extension, believing that they downloaded images, audio recordings or video. And they launched it, not even suspecting that this executable file would be viral. As the command protocol of the software used Telegram API.

Telegram - a free messenger for smartphones and other devices, allowing you to exchange text messages and media files in various formats.

Information Source: Kaspersky Lab

Canada Reports Blockchain To Be Amongst Its Highest Paying Industries
A report recently published by the Canadian Digital Chamber of Commerce proves that the money involved in the blockchain industry of the nation is at...
KodakONE Blockchain Beta Test Generated $1 mln in Content Licensing Claims
More than $1 million — this how much in licensing claims KodakONE, a dev of DLT-based image rights platform, has generated. Certified by the American...
UNICEF Funds Six DLT Startups to Solve Global Issues
UNICEF is both crypto- and blockchain friendly. A few months ago the French leg of UNICEF said it was accepting donations in nine types of...
Facebook Has Opened 5 Blockchain-Related Vacancies
More than half a year ago social media titan Facebook set up a blockchain group to explore how to employ this technology to the maximum advantage of...
Seven Southern European Countries Agreed to Promote Blockchain
Seven countries of Southern Europe signed a declaration in which they commit themselves to promote blockchain. These countries are Cyprus, France...
Amazon Embraces Blockchain Despite The Dip on Crypto-Market
Even as crypto-market plunged from nearly $830 billion in January to $121.5 billion this week, the leading e-commerce company sees an opportunity in...
Microsoft Releases Dev Kit to Connect Users to Blockchain
The American technological titan Microsoft has finally introduced its development kit dubbed Azure. Azure functions without a server and is powered...
JPMorgan: Investors Should Keep an Eye on These DLT-Friendly Companies
If you are an investor, it might still be challenging for you to get exposed to DLT, unless, for sure, you are purchasing bitcoin. To ease the life...
Blockchain Engineers Make As Much As AI Specialists
Engineers working in the blockchain domain are as demanded as those who work on artificial intelligence. Such a conclusion can be made from the...
Blockchain Market Could Be $7 bln and Boost Amazon, Microsoft, BofA Says
Novel estimates from one of the most influential investment banks in the world — Bank of America — showcase unalterable ledger spread will be of use...