APK file in fake SBI Aadhaar update compromises WhatsApp groups of ministers, officials, journalists in cyber attack
Initial reports suggest that cybercriminals executed the breach by sending a fake SBI Aadhaar update message embedded with a harmful APK file
By - Newsmeter Network
Representational Image
Hyderabad: A major cybersecurity breach has triggered concern in Telangana after several official WhatsApp groups linked to cabinet ministers, senior government officers and journalists were reportedly compromised.
Initial reports suggest that cybercriminals executed the breach by sending a fake SBI Aadhaar update message embedded with a harmful APK file.
Malicious APK used to take control of devices
According to sources, the hackers circulated an APK file disguised as a mandatory Aadhaar update alert. Once the file was downloaded and opened, the malware allegedly gained remote control of the user’s device, including WhatsApp access.
Multiple media groups, ministers’ official communication channels, the CMO WhatsApp group, and the Deputy Chief Minister’s group are believed to have come under the hackers’ control.
There are also reports claiming that the phones of public relations officers and several journalists have been breached.
Messages warning of breach floods social media
As screenshots and warnings spread rapidly online, panic grew among officials and media personnel. Several users reported losing administrative control of their WhatsApp groups, fuelling fears of data theft and misuse.
Cyber Crime police begin probe
Telangana Cyber Crime police have taken note of the issue and initiated verification and containment measures. Efforts are underway to secure compromised groups and prevent further spread of the malware.
Officials are expected to issue a formal advisory after assessing the scale of the breach.
Cybersecurity experts issue precautions
Cyber experts have urged WhatsApp users, particularly those handling official communication, to avoid interacting with suspicious messages or files.
Their key advisory includes:
- Do not install or open any APK file received via WhatsApp or SMS.
- Ignore unsolicited Aadhaar or bank-related update links.
- Enable two-factor authentication.
- Report unfamiliar or suspicious activity immediately.
“APK files are unsafe unless verified. Clicking unknown links may grant full access to your phone,” experts warned.
Public caution recommended
With the breach still under investigation, users have been advised to stay alert and refrain from sharing sensitive information until systems are fully secured.
