Cabinet Division warns against use of malicious apps

ISLAMABAD: The Cabinet Division’s National Telecom and Information Security Board (NTISB) has issued a cybersecurity advisory warning against the use of dangerous apps on Google Play Store that have the ability to steal users’ private information and mobile data.

According to the advisory, users’ data is being stolen through dangerous apps on the Play Store and sensitive information is being stolen through the Ko Spy spyware and Anatsa banking Trojan.

National institutions, ministries, divisions and the public have been instructed to be cautious of such malicious mobile apps and has advised against downloading them.

According to the advisory, North Korean hacker groups APT-37 and APT-43 are behind these attacks. The Ko Spy app accesses call logs, location, audio, videos and screenshots while the Anatsa (T-Bot) Trojan banking app steals passwords and financial details from the users.

These apps were disguised as file managers and security tools and had been downloaded over 220,000 times, the advisory added. In March, Google removed dozens of these apps from its Play Store after the threat was identified.

The advisory from the cabinet division has asked all users to immediately delete such apps from their mobile phones and the public should only install apps from trusted developers.

PTA shuts down 3,248 YouTube channels involved in anti-state campaigns