A zero-day vulnerability was discovered by Kaspersky Lab in the Telegram Desktop app that could let hackers pwn your computer to mine for cryptocurrencies like Zcash, Monero, Fantomcoin, and others.
Kaspersky Lab’s security researchers say the zero-day vulnerability can be used to deliver multi-purpose malware to computer users using the Telegram Desktop app, including backdoors and crypto-cash mining software.
The security company also discovered that hackers had actively exploited the vulnerability in the Telegram Desktop app, which is based on the right-to-left override Unicode method, since March last year, but only to mine cryptocurrencies like Fantomcoin, Monero, and Zcash.
Once the zero-day vulnerability was successfully exploited, hackers were able to install a backdoor on your computer using the Telegram API as both a command and control protocol, which means they could gain remote access to your PC.
“We have found several scenarios of t… (read more) // Read more: original article.