Microsoft has issued a warning about a new malware campaign that uses WhatsApp messages to spread malicious Visual Basic Script (VBS) files to Windows users.
The campaign, which started in late February 2026, utilizes these VBS scripts to initiate a multi-stage infection chain, ultimately allowing threat actors to establish persistence and gain remote access to compromised systems.
The exact lures used by the attackers to trick users into executing the malicious scripts are currently unknown, but the use of WhatsApp as a distribution vector highlights the evolving tactics of threat actors in exploiting popular communication platforms.
This campaign underscores the importance of vigilance and caution when interacting with messages from unknown sources, especially those containing file attachments or links.
Microsoft’s warning serves as a reminder for users to be aware of the potential risks associated with clicking on suspicious links or downloading attachments from untrusted sources, and to keep their systems and software up to date with the latest security patches.
By being informed and taking proactive measures, users can significantly reduce the risk of falling victim to such malware campaigns and help protect their personal and sensitive information from unauthorized access.
Source: Original Article
