Video
Attackers exploiting the ‘EvilVideo’ vulnerability can share malicious Android payloads across Telegram channels, groups and chats while appearing as legitimate multimedia files
July 26, 2024
This week, ESET researchers documented their discovery of a zero-day exploit that appeared for sale on underground forums and targeted the Telegram app for Android. The underlying vulnerability, which the researchers dubbed ‘EvilVideo’, was used to distribute malicious files masquerading as videos. ESET reported the bug to Telegram, which updated the app on July 11, 2024.
How exactly does the exploit work and are you also at risk of attacks that abuse the vulnerability? Discover it in the video and be sure to read the blog post.