Home Innovation Cyber Security Ghana CSA Alerts WhatsApp Web ...

Ghana CSA Alerts WhatsApp Web Banking Malware Targeting Windows Users

Cyber Security

Business Honor
28 January, 2026

CSA warns Windows users of Astaroth malware on WhatsApp Web, which steals banking information, OTPs and spreads automatically.

The Cyber Security Authority (CSA) of Ghana has released an urgent alert on a harmful WhatsApp Web banking malware campaign that focuses on Windows users. One of the most dishonest social engineering cyber threats affecting WhatsApp users in 2026 is the attack, which employs malicious ZIP files sent through WhatsApp and frequently poses as work documents or invoices. The Astaroth malware, a stealthy virus that has been active since 2015, is installed when a Windows PC opens the ZIP file. Once operational, it establishes a connection with WhatsApp Web, collects the user's contact list, and then sends the same malicious files to other users. This shows the quick development and spread of messaging platform exploitation techniques.

According to the CSA, the malware quietly records inputs and steals private data, including banking information, browser cookies, one-time passwords (OTPs), and mobile money verification codes. This may result in widespread identity theft as well as illegal access to bank accounts and mobile wallets. Global dispersed malware trends have spread beyond their originating regions, as seen by reports linking them to the Brazil-based Boto Cor de Rosa campaign.

The CSA recommends Astaroth malware protection best practices, like using strong antivirus software, keeping devices updated with security patches, and avoiding suspicious attachments, even from trusted contacts. Users should keep an eye out for suspicious account activity and report it through the CSA Ghana mobile application, email report@csa.gov.gh, phone/text 292, or WhatsApp 0501603111. Ghana's cyber security strategies need to change as hackers take advantage of everyday applications like WhatsApp. According to the CSA, by 2027, WhatsApp Web malware threat mitigation strategies will use artificial intelligence-based security systems to identify and remove threats quickly, turning today's digital weaknesses into a more secure, intelligent, and strong system for all users.