A sophisticated Android malware campaign targeting users in South Asia, particularly in the Kashmir region of India, has been detected. The malware, disguised as a chat app called “Tanzeem,” is credited to an APT group named ‘DONOT,’ which allegedly serves Indian interests. It requests access to user data and device functions, with no actual chat functions present. It uses OneSignal, a customer engagement platform, to deliver phishing links via push notifications.
Vidar Infostealer Bypasses Google Chrome’s ABE Encryption via APC Injection
A sophisticated evasion technique developed by Vidar infostealer operators successfully bypasses Google Chrome’s Application-Bound Encryption (ABE). Introduced in 2024, ABE was designed to protect browser-stored
