Bleeping Computer

Telegram zero-day allowed sending malicious Android APKs as videos

A Telegram for Android zero-day vulnerability dubbed 'EvilVideo' allowed attackers to send malicious Android APK payloads disguised as video files. A threat actor named 'Ancryno' first began selling ...
PC Magazine

Telegram Zero-Day for Android Let Attackers Hide Files in Fake Videos

ESET discovered the "EvilVideo" exploit being advertised for sale on a dark-web forum and reported it to Telegram last month. While it's unclear whether anyone actually fell for the scam, Telegram ...
Dark Reading

Attackers Exploit 'EvilVideo' Telegram Zero-Day to Hide Malware

Telegram has patched a zero-day flaw found in older versions of its chat and media-sharing application for Android that allows attackers to hide malicious payloads in video files. "Using the exploit … ...