FRIDAY, JULY 3, 2026|No. 5622
Technology · Security · Alert

CERT-In Issues High Alert for WhatsApp Web and Desktop Users Over Malware Campaign

Indian cybersecurity agency CERT-In warns WhatsApp Web and Desktop users of a malware campaign where hackers send VBScript files from compromised accounts.

Illustration of a warning alert on a computer screen with WhatsApp interface.
Illustration of a warning alert on a computer screen with WhatsApp interface.
1 sources
Pipeline ingest
3 reads
Positive / Neutral / Negative
0 countries
Related coverage

Warning! WhatsApp Web and Desktop Users Beware: Do Not Make This Mistake; Government Issues Alert

Jun 28, 2026 10:16 pm IST | Sarveshwar Pathak

Key Points

  • CERT-In has issued a major cyber alert for WhatsApp Web and Desktop users.
  • According to the agency, hackers are installing malware on people's systems by sending VBScript (VBS) files through previously hacked WhatsApp accounts.

AI Quick Read

If you use WhatsApp Web or WhatsApp Desktop daily, this news is extremely important for you. The Indian government's cybersecurity agency CERT-In (Indian Computer Emergency Response Team) has issued a high alert for all users. According to the agency, a dangerous malware campaign is spreading rapidly these days, targeting WhatsApp Web and Desktop users. Let's learn the details in depth.

The most concerning thing is that this attack can come not from an unknown number, but from the WhatsApp account of your friend, relative, or office colleague. In such cases, people open the file without thinking, and their system gets hacked.

According to CERT-In, cybercriminals first hack a person's WhatsApp account. Then, from that same account, they send a file named VBScript (.vbs) to people in their contact list. Since the message comes from a trusted person, most people open that file. This is the biggest mistake.

As soon as the user clicks on the file, malware can be installed on their computer. After that, hackers can access your system without your knowledge. They can steal your login passwords, banking details, personal documents, photos, and other sensitive information. Not only that, they can also install other dangerous viruses on your computer, which could affect the entire network.

CERT-In has clearly stated that you should not open any unknown or unexpected file just because it was sent by someone you know. If you were not expecting any file, first call or message that person separately to confirm whether they actually sent that file.

The agency has also advised that if a friend's message seems unusual or is written in strange language, treat it with suspicion. Often, hackers send malware automatically, and the account owner is not even aware of it.

Cybersecurity experts say that nowadays, with the help of AI and advanced technologies, cyber attacks have become more dangerous than before. That is why CERT-In has recently tightened security rules for mobile and computer manufacturing companies as well.

If you use WhatsApp Web or Desktop, some simple precautions can protect you. Always keep your system and WhatsApp app updated, use antivirus, enable two-step verification, and before clicking any suspicious link or file, confirm its authenticity.

A small negligence can put your personal information, bank account, and entire computer system at risk. Therefore, from now on, do not make the mistake of opening any file on WhatsApp without verifying it.

PAN's pipeline reviewed approximately 1 open sources for this article. No human editor reviewed this article before publication.

Related Reads

Show on timeline →