Naked TikTok Girls = Malware Mayhem #InvisibleFilter
TikTok’s ‘Invisible Body’ challenge was too tempting for malware scrotes to pass up. It was the perfect opportunity to thirst-trap people into downloading an info-stealing Trojan.
And it was wildly successful. Because of course it was: “You too can see your favorite TikTok star naked!”
Just download this totally innocent Windows app. But, in today’s SB Blogwatch, we wonder where the nekkid videos really go.
Your humble blogwatcher curated these bloggy bits for your entertainment. Not to mention: Levitating x Whenever, Wherever.
TrickTok
What’s the craic? Bill Toulas reports—“TikTok ‘Invisible Body’ challenge exploited to push malware”:
“Quickly amassed over a million views”
Hackers are capitalizing on a trending TikTok challenge … to install malware on thousands of devices and steal their passwords, Discord accounts, and, potentially, cryptocurrency wallets. [The] challenge requires you to film yourself naked while using TikTok’s “Invisible Body” filter, which removes the body from the video and replaces it with a blurry background. This challenge has led to people posting videos of them allegedly naked but obscured by the filter.
…
Threat actors … claim to offer a special “unfiltering” filter to … expose the TikTokers’ nude bodies. However, this software is fake and installs the “WASP Stealer (Discord Token Grabber)” malware.
…
Researchers found two TikTok videos posted by the attackers that quickly amassed over a million views. … This attack has been so successful that the malicious repository has achieved a “trending GitHub project” status, and while it has since been renamed, it currently has 103 stars and 18 forks.
Tell me in fewer words? Barry Collins obliges—“Invisible Body Challenge Hijacked”:
Victims are encouraged to download a piece of software that will supposedly … remove the filter, tricking people into thinking they will see the naked bodies. … However, the software is fake and all they actually get is … malware.
Horse’s mouth? Guy Nachshon and Tal Folkman—“Attacker Uses a Popular TikTok Challenge to Lure Users”:
“The level of manipulation”
This challenge is quite popular on TikTok and currently has over 25 million views for the #invisiblefilter tag. … This effect removes the character’s body from the video, making a blurred contour image of it.
…
The high number of users tempted to join this Discord server and potentially install this malware is concerning. The level of manipulation … is increasing as attackers become increasingly clever.
Clever? u/SF_Engineer_Dude doesn’t agree:
I imagine you could trap most TiKTok users with a string, a box, and some thirsty nudz.
All of which amuses @AmioliRavioli greatly:
It installs malware. LMAOoo that’s what u guys get for being perverts.
Beastly malware pushers. A beautiful u/The_Curious channels Angela inside some sort of teapot: [You’re fired—Ed.]
A tale as old as time.
However, Peter Alexander London has a more po-faced reaction:
This is why you need regulations: Even the not so smart must be protected against their own stupidity. Otherwise it will be cannibalism all over the internet.
Wait. Pause. What happens to the naked video, before it’s filtered? u/ForumsDiedForThis would like to know, too:
I don’t install CCP spyware on my phone, but am I correct in assuming that the video filter is processed online, not on the local device itself? I would assume many low powered phones wouldn’t be able to perform that sort of real time processing.
…
So in other words you’re uploading your naked body to the CCPs data centre which they can then do whatever they want with? Sounds dumb either way.
Meanwhile, @ScambaitSniper succinctly summarizes the sad story:
Horny bois—straight to jail.
And Finally:
You have been reading SB Blogwatch by Richi Jennings. Richi curates the best bloggy bits, finest forums, and weirdest websites … so you don’t have to. Hate mail may be directed to @RiCHi or [email protected]. Ask your doctor before reading. Your mileage may vary. Past performance is no guarantee of future results. Do not stare into laser with remaining eye. E&OE. 30.
Image sauce: Rebecca Matthews (via Unsplash; leveled and cropped)