Virus Hits Indian Koo App As Buhari, Supporters Continue To Divert From Twitter

Koo, an Indian copycat version of Twitter, was recently infected with a virus, potentially exposing hundreds of its users to attacks across the platform.

In July, security researcher Rahul Kankrale and independent security researcher Prasoon Gupta found the virus.

Mr Gupta told The Hacker News that the virus was caused by the way Koo handles access tokens when a user’s profile is validated using a one-time password (OTP) delivered to their phone numbers.

Malicious scripts can be inserted directly into the program thanks to the virus. An attacker can take activities on behalf of users, such as obtaining web browser cookies, in this fashion.

This also means that hackers might utilize users’ profiles to place sensitive data such as private messages, propagate misinformation, or display spam.

The accounts of prominent government bureaucrats, presidential aides, agencies, and other pro-government individuals taken to Koo may be affected by this virus.

After the Buhari regime indefinitely banned Twitter for deleting a post by the president threatening to punish secessionists in the country’s South-East area, Koo was created in November 2019 as a government-friendly alternative to Twitter.

All social media sites operating in the country are required to register as a commercial entity with the federal government. These were the same criteria that were put in place when the Twitter ban was lifted.

Nigeria’s government deactivated its popular Twitter account, which had over a million followers, in favor of an Indian knockoff that spreads hate and anti-Muslim propaganda.

The Buhari administration’s use of the social media app has bolstered Koo’s popularity; the site recently featured Mr Buhari in its commercials, claiming to provide exclusive access to Nigeria’s president.