Clubhouse, the audio-only social app that has got popularity quickly because of its very idea and since it has hosted personalities like Elon Musk and Facebook CEO Mark Zuckerberg, still follows an invite-only method for letting others join it. And this might be one of the biggest ways how scammers can exploit users, according to Denis Legezo, security expert at Kaspersky.
There are privacy concerns because Clubhouse works with a Shanghai-based company called Agora to provide real-time audio technology support. The firm is headquartered in Shanghai and Silicon Valley. Denis Legezo, security expert at cyber-security firm Kaspersky, said that there are two main concerns here – the sale of invites and fake applications.
“Both scenarios are united by one thing – the desire to exploit users’ interest in the social platform,” he said in a statement. The first scenario is simply monetisation on a small scale. “However, the second scenario is more serious. Attackers can distribute malicious code under the guise of popular software – for instance, a fake version of Clubhouse for Android,” Legezo emphasised. “A fake malicious application can do exactly what you allow it to do in the security settings of your Android – to get a rough or accurate location of the device, record audio and video, attain access to messengers, etc.,” he warned.