A new cyber threat has emerged, as detailed by Kaspersky, involving the distribution of malicious Visual Basic Script (VBScript) files through WhatsApp messages. This campaign primarily targets users of WhatsApp Desktop and WhatsApp Web in various countries, including Malaysia, Brazil, India, and several European nations. The malicious scripts facilitate the installation of ManageEngine's Remote Monitoring and Management (RMM) software, which, while legitimate, poses significant risks when deployed without user consent.
For businesses, this development underscores the importance of enhancing employee awareness regarding cybersecurity threats, particularly those leveraging widely used communication platforms like WhatsApp. Organizations should implement robust security protocols, including the use of endpoint protection tools and employee training programs focused on identifying such phishing attempts. The combination of social engineering tactics with the installation of legitimate software highlights the evolving nature of cyber threats, necessitating a proactive approach to cybersecurity strategies.
This situation is particularly relevant for the fields of cybersecurity and AI, as it illustrates the dual-use nature of software and the potential for misuse in corporate environments. As attackers become more sophisticated, the lines between legitimate and malicious software blur, prompting the need for advanced detection mechanisms powered by AI. Companies must remain vigilant and adapt their security frameworks to address these emerging threats effectively.
---
*Originally reported by [The Hacker News](https://thehackernews.com/2026/06/whatsapp-vbscript-campaign-uses-fake.html)*