TikTok’s “invisible challenge” is bringing hackers front and center

TikTok’s “invisible challenge” is bringing hackers front and center

Hacker's are targeting those hoping to uncover participants in the viral "Invisible Challenge".

by John Curtis and Nora Hogan

The only thing cooler than being seen on social media these days is not being seen.

That is if you’re participating in the “invisible challenge” on TikTok, a viral sensation that totaled over 3 billion views from participants.

What is the invisible challenge?

The invisible challenge sees TikTokers use a filter that effectively turns their skin into a green screen.

As a result, should the participant be in front of a neutral-colored background, they will appear, invisible, save for a blurry silhouette of their bodies.

@kuroserene/TikTok

Generally speaking, the participants’ clothes are still visible, but their hands and faces are missing.

Inevitably, numerous cheeky TikTok users decided to take the invisible challenge to a new level, recording themselves in their birthday suits, but thanks to the filter, appear completely “invisible” to viewers.

Linda.lime/tiktok

As more and more of these not-quite NSFW invisible challenges began to materialize, certain users began to make it their mission to see what lay under the invisibility filters.

One could argue these devious minds got what they deserved, however, as they became prime targets for hackers.

Malware For Sale

Knowing there would likely be countless people looking for any way to remove the filter from invisible challenge videos, hackers were quick to promote an “unfiltering” filter, potentially leaving the invisible challenge participants exposed for all to see.

Those who download this filter however found themselves disappointed, as not only did the filter not exist but instead those who download the software were the ones who found themselves exposed and vulnerable.

The software instead installed the WASP Stealer on their devices, malware capable of stealing passwords, stored credit card information, and even cryptocurrency from devices.

Promoted on TikTok

As reported by Bleeping Computer, this non-existent software app was even promoted on TikTok by users @learncyber and @kodibtc, both of whom have since disabled their accounts.

Both of the videos included a link to join a Discord server to download the software.

Those who clicked the link were greeted by an NSFW image, which the hackers claimed was the result of using the unfiltering software and showing its effectiveness.

They were also sent a private message to from a bot account called “Nakedo”, requesting that they star the GitHub repository where the malware is hosted, and users were given a “how to” YouTube tutorial to install the malware on their devices.

Though both the discord server and the instructions on GitHub have both since been taken down.

Don’t be fooled.

Oscar Wilde once famously said, “I can resist anything, except temptation”.

Indeed, who hasn’t fallen prey to an online scammer, promoting something too good to be true?

Thankfully, there are easy signs to determine the validity of an app or software promoted to you on via email or social media.

Before clicking on any links, always look out for:

  • Poor spelling and grammar
  • Emails from an unknown sender
  • Emails with a blank subject line.

Protect your devices.

Even when we do look out for red flags, we might still find ourselves downloading software or clicking a link against our better judgment.

Making it all the more important to have antivirus software installed on your phone and laptop.

Total AV is among the best antivirus software available today, offering:

  • Easy setup
  • Protection from ransomware and phishing scams
  • Recommendations on which files to remove from your devices
  • Cleaning and management services for your browser
  • Protection on Android, Mac, and Windows devices
  • Excellent, round-the-clock customer service.

Limited-time Holiday deal for CyberGuy readers: $14.95 your first year (85% off)

 

Deal extended until Thursday, December 15, 3 pm ET

Days
Hours
Minutes
Seconds

 

TikTok can be safely enjoyed by all.

If reading all this has made you question why you even have TikTok on your phone.  We’ve talked about how having a TikTok account comes with numerous advantages, including step-by-step “how to” guides, as well as information on popular places and events in cities you might be visiting, or in your hometown.

Despite how useful it can be for those who engage in its entertaining videos and learn new tips, TikTok is increasing a growing threat to our privacy and security.  We’ve discussed these steps for you to take to adjust your settings to protect your privacy on TikTok.

In a nutshell,  be sure to follow these five steps:

  • Don’t share your contacts with TikTok
  • Turn off ad targeting
  • Keep your profile anonymous
  • Don’t let others find your account
  • Use a VPN and/or a secure email amount.
  • Request your data, to see exactly what TikTok knows about you.

Step-by-step guides on how to do all these things can be found here.

Another thing to consider: if you don’t want certain images of yourself to be seen by a wide range of people, probably best to leave those pictures and videos off social media, with or without any filters.

Then too, those who have nothing better to do than to search for ways to unfilter supposedly nude videos of others, consider the malware you find on your device the coal you would have found in your stocking on Christmas morning.


   

Leave a Comment

GET MY FREE CYBERGUY REPORT
Subscribe to receive my latest Tech news, security alerts, tips and deals newsletter. (We won't spam or share your email with anyone else.)

By signing up, you agree to our Terms of Service and Privacy Policy. You may unsubscribe at any time.

Tips to avoid our newsletters going to your junk folder