Instant messaging service WhatsApp, which is owned by Meta, has issued a warning to users not to download fake versions of the programme because doing so could jeopardise their security.
Will Cathcart, the head of WhatsApp, revealed on Twitter that the company’s security team discovered a fake version of WhatsApp outside of Google Play that was luring users with new features.
According to a tweet he made, “Recently our security team discovered hidden malware within apps – offered outside of Google Play — from a developer called “HeyMods,” which included “Hey WhatsApp” and other apps.
Reminder to @WhatsApp users that downloading a fake or modified version of WhatsApp is never a good idea. These apps sound harmless but they may work around WhatsApp privacy and security guarantees. A thread:
— Will Cathcart (@wcathcart) July 11, 2022
Will Cathcart emphasised that the company was taking action against HeyMods to prevent further harm and would look into legal options to hold HeyMods and others like them accountable. He also cautioned users that such fake versions were a scam to steal personal information stored on people’s phones.
The head of WhatsApp urged users to only download WhatsApp from a reputable app store in light of the most recent security threat.
Google Play Protect on Android can now detect and disable previously downloaded malicious fake versions of WhatsApp. We appreciate the help of Google for their continued work to prevent malicious apps from proliferating on Android devices.
— Will Cathcart (@wcathcart) July 11, 2022
He urged users to only use WhatsApp from a reliable app store or directly from our official website at http://WhatsApp.com/dl. “If you see friends or family using a different form of WhatsApp, please encourage them to only use WhatsApp from a trusted app store,” he said.