ESET Discovers Android Zero-Day Telegram Vulnerability That Allows Sending Malicious Files Masquerading as Videos
2024-07-30 16:23:56
ESET researchers have discovered a zero-day vulnerability for Telegram for Android, which was sold for sale in an underground forum post on June 6, 2024 for an unspecified price. Exploiting the vulnerability to abuse a vulnerability named EvilVideo by the ESET research team, attackers can share malicious Android payloads through Telegram channels, groups, and chats, and make them appear as multimedia files. It is reported that the vulnerability only applies to Android Telegram versions 10.14.4 and earlier. The vulnerability was fixed on July 11, 2024, after the ESET research team reported it to Telegram, which released the 10.14.5 version on July 11 and notified the ESET research team via email.
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
Previous article:
ESET发现Android零日电报漏洞,允许发送伪装成视频的恶意文件Next article:
美联储、日本央行和英国央行均将于本周公布关键利率决议
