Cyber authorities issue warning against fake APK files

Hyderabad: Cybercrime officials have issued a public advisory cautioning people about the increasing circulation of fake APK files through social media, WhatsApp, SMS, Telegram, and fraudulent websites. These apps are often disguised as official bank or government services, claiming to offer benefits, cashback rewards, job opportunities, KYC updates, or investment schemes. Victims who download these apps risk losing personal and banking information, including OTPs, which can result in financial losses and misuse of sensitive data.

Fraudsters send links via messages, emails, or social media, claiming to be from banks, government agencies, or promotional services. Common fake file names include RTOChallan.APK, PMKisanYojana.apk, ElectricityCurrentBill.APK, HMWSSB.apk, Creditcard.apk, and rewardpoints.apk. These apps request excessive permissions such as access to messages, contacts, notifications, or screen sharing, allowing criminals to monitor devices. Some malicious APKs also contain Remote Access Tools (RATs), enabling full control of the phone and unauthorized transactions.