Pakistan’s National Telecommunication and Information Security Board (NTISB) has issued a warning about a wave of harmful Android applications targeting user data.
The advisory, released under the Cabinet Division, urges government bodies and the public to remain cautious while downloading apps from the Google Play Store.
Read More: Cyber Crime Agency Targets Online Anti-State Campaigns
According to the NTISB, several apps disguised as file managers and security tools are actually malicious software designed to collect sensitive information. These apps can access users’ call logs, audio and video files, screenshots, locations, and even banking credentials.
The threat is reportedly linked to North Korean hacking groups identified as APT-37 and APT-43. These groups are believed to be using two specific types of malware—Quaspy spyware, which collects media and communication data, and Anatsa (or T-Bot), a banking Trojan that steals login and financial details.
Although Google removed many of these malicious apps in March, they had already been downloaded more than 220,000 times, raising concerns about user security.
Read More: PECA Act: Cybersecurity Measure or Tool for Suppression?
The NTISB has advised ministries and citizens to delete suspicious apps immediately, download only from trusted sources, check app permissions, and ensure Google Play Protect is active. It has also stressed the importance of following cybersecurity protocols to avoid data breaches and financial loss.
The advisory aims to strengthen digital safety for both individuals and institutions in the face of evolving cyber threats.