EvilLoader Malware Targets Telegram Users on Android, Exploiting Critical Vulnerability and Risk of Data Theft

A new malware threat has emerged targeting Telegram users on Android devices, identified as EvilLoader. This malware disguises itself as video files, specifically using the .htm extension while appearing as MP4 files. Users are warned that opening these files may redirect them to a browser prompting for app updates or installations of 'necessary' players, which can lead to data theft. The malware exploits a critical vulnerability in Telegram's built-in video player, allowing hackers to execute malicious programs. Additionally, some streaming websites have been reported to disseminate similar information-stealing malware, further increasing the risk for users engaging with pirated content. Security experts emphasize the importance of avoiding suspicious links and updates to protect personal data.