Crime

Pakistan-linked hackers using these three apps as spywares to target Android users in INDIA

A Pakistan-linked hacker group named ‘Transparent Tribe’ is using fake Android apps and mimicking YouTube to spread the CapraRAT mobile remote access trojan (RAT).

Transparent Tribe also known as APT36. They target Indian entities for intelligence-gathering purposes, relying on an arsenal of tools capable of infiltrating Windows, Linux, and Android systems. According to PCrisk, CapraRAT is the name of an Android remote access that’s been active since 2013 and typically targets military and diplomatic personnel in both India and Pakistan. It is known that CapraRAT is used by an advanced persistent threat group (ATP) called APT36.

CapraRAT Doing RAT Things

Two of the packages aim to trick users and make them download what they think is the legitimate YouTube app, and a third uses romance-based social engineering by reaching out to a YouTube channel belonging to a persona called “Piya Sharma,” which includes uploads of several short clips of a woman in various locations. In a campaign earlier this year, the group also distributed CapraRAT via Android apps disguised as a dating service, which has become a common lure theme for delivering the malware. Once downloaded, the malicious app requests several device permissions, some that make sense for YouTube, like, taking photos and videos, and gaining microphone access. Other requested permissions, like, the ability to send, receive, and read SMS messages. 

“These apps mimic the appearance of YouTube, though they are less fully featured than the legitimate native Android YouTube application,” SentinelLabs security researcher Alex Delamotte has said.

Defense Measures against These Spywares

Android users should never install Android applications distributed outside of the Google Play store and should avoid downloading new social media applications advertised in various social media communities. In addition to those people also should evaluate the permissions requested by an application that they download. To make sure that they are safe people should never install a third-party version of an application that’s already present on their device.

New Staff

Recent Posts

BGT 2024: Preview of the Thrilling 1st Match Between IND and AUS

The 5-match series between India and Australia will start from 22 November 2024 with the…

8 hours ago

Mohammed Shami’s Anger at Manjrekar: What Happened Before the IPL Auction?

Team India's star fast bowler Mohammad Shami is in the limelight these days. He has…

8 hours ago

US court issued warrant against Goutam Adani!

      Gautam Adani, chairman of Adani Group and the country's second richest industrialist,…

12 hours ago

Vinesh Phogat Reported Missing! Viral Post Urges to Notify These People – Here’s the Full Story

Vinesh Phogat, India's former female star wrestler and current Julana MLA, has gone missing, if…

18 hours ago

‘Cricket Auction is a Gamble’, Former Supreme Court Justice Vikramjit Sen’s Bold Statement

A few days before the Indian Premier League 2025 (IPL 2025) auction, former Supreme Court…

19 hours ago

Sofia Ansari Sets Social Media Ablaze in Black Bra and Lehenga, Impressing All Ages

Social media influencer and Bollywood beauties' rival Sofia Ansari often creates a stir on the…

1 day ago