Cybercriminals is increasingly exploiting trusted digital platforms and users must take proactive steps to protect themselves from malware campaigns such as the Astaroth banking trojan, which spreads through WhatsApp Web on Windows computers.
The following measures can significantly reduce the risk of infection and financial loss.
Be cautious with files shared on WhatsApp
Users should avoid downloading or opening ZIP files or unexpected attachments received via WhatsApp, even when they appear to come from familiar contacts. Cybercriminals often hijack accounts to distribute malware, making malicious messages look legitimate.
Watch out for urgency and pressure tactics
Messages that demand immediate action, request urgent downloads, or use alarming language are common social engineering tricks. Taking a moment to verify such messages through a different channel can prevent accidental infection.
Secure your WhatsApp Web sessions
Regularly check active WhatsApp Web sessions through the WhatsApp mobile app and log out of any session you do not recognise. Users are also advised not to leave WhatsApp Web signed in on shared or public computers, where devices may already be compromised.
Keep your system and software updated
Ensuring that Windows operating systems and all installed applications are up to date with the latest security patches is critical. Updates often fix vulnerabilities that malware exploits to gain access to systems.
Use reliable security software
Installing reputable and up-to-date endpoint security or antivirus software can help detect and block malicious activity before damage is done. Real-time protection features are particularly effective against stealthy malware.
Protect your banking credentials
Users should avoid saving banking passwords on browsers and should enable multi-factor authentication where available. Regularly monitoring bank statements and account activity can also help detect suspicious transactions early.
Report suspicious activity promptly
Anyone who suspects a cyber incident or malware infection is encouraged to report it immediately to the Cyber Security Authority (CSA). The Authority operates a 24-hour Cybersecurity and Cybercrime Incident Reporting service via short code 292, WhatsApp 0501603111, or email report@csa.gov.gh.
By staying alert, adopting safe digital habits and reporting incidents early, users can reduce their exposure to cyber threats and help protect Ghana’s digital financial ecosystem.
