Criminals use trending TikTok challenge to make data-stealing malware invisible

2022-11-29 20:00

Malware-slinging miscreants are taking advantage of a trending TikTok challenge - and viewers' dirty minds - to spread data-stealing malware via a phony app that's had more than one million views so far.

The new TikTok trend is called Invisible Challenge, and it involves a person filming themself naked while using an effect called Invisible Body that removes the body from the video.

Soon after Invisible Challenge started trending, miscreants began posting TikTok videos with links to fake "Unfilter" software that claims to remove the invisible filter and show the naked video creator, according to security researchers at Checkmarx.

TikTok users posted videos with more than a million views promoting this phony app and urging viewers to join a Discord server, "Discord.gg/unfilter" to download it, researchers Guy Nachshon and Tal Folkman wrote in a report.

After joining the "Space Unfilter" Discord server, viewers see some NSFW videos that the criminals claim to have obtained by using the unfilter software and they receive a private message with a request to star the GitHub repository 420World69/Tiktok-Unfilter-Api.

"Given the user base of TikTok, this type of activity is not shocking," he told The Register.

News URL

https://go.theregister.com/feed/www.theregister.com/2022/11/29/tiktok_invisible_challenge_malware/

#criminal #malware #tiktok