The Advanced Persistent Threat (APT) group known as DoNot, or APT-C-35, has intensified its cyber-espionage activities by deploying malicious Android applications targeting users in India, particularly in the Kashmir region. These applications masquerade as legitimate services, such as chat platforms and Virtual Private Network (VPN) tools, to infiltrate devices and exfiltrate sensitive data. Recent investigations have uncovered several malicious applications attributed to the DoNot group: Tanzeem Disguised as a chat application, Tanzeem requests extensive permissions upon installation, including access to call logs, contacts, SMS messages, file storage, and precise location…
Read MoreDoNot APT Group Deploys Malicious Android Apps Targeting Indian Users
