Seems that someone has exploited Telegram windows client to infect users with cryptocurrency mining malware.Crooks spammed Telegram users with messages containing file attachments. The file names contained the RLO character, which changed text display direction right in the middle of the file's name.For example, in one campaign crooks sent users a file named "photo_high_reU+202Egnp.js", where U+202E is the RLO character. When the file's name was rendered on screen, the last part of the name was flipped and the file appeared as "photo_high_resj.png. Users clicked and ran the file thinking it was an image, but in reality, they executed a JavaScript file that downloaded and installed malware on their windows system to use them for mining Monero, Zcash, and Fantomcoin primarily
The zero-day has been fixed in the meantime, but have used the flaw for months before he discovered it.
Careful, seems that there is no more limits in using others computers to mine cryptocurrency!