A major cyberattack has targeted WhatsApp groups operated by the public relations officers (PROs) of Telangana ministers, journalists and even communication channels linked to the Chief Minister’s Office. The attack involved a Fake SBI KYC update message containing a malicious app (APK), designed to steal personal and financial data.
How the Cyberattack Worked
Hackers distributed a file disguised as an SBI KYC or Aadhaar update application inside official WhatsApp groups. The message warned that banking services would be blocked if KYC was not updated.
Once installed, the APK can:
- Take control of the mobile device
- Read SMS and OTPs
- Access WhatsApp conversations
- Steal contact lists and banking details
- Hijack UPI and online banking
Cybersecurity experts warn that the malware has the ability to clone the entire device and remotely access Chats, Photos, Files and Financial apps.
Government Communication Groups Breached
Investigators confirmed that the malicious file was circulated in:
- WhatsApp groups managed by PROs of multiple Telangana ministers
- Media communication groups used for government press coordination
- A group linked to the Chief Minister’s communication cell
Some groups were renamed to “SBI” to appear authentic and mislead officials and journalists.
Why This Attack Is Serious
Unlike ordinary banking scams, this cyberattack directly targeted Government communication networks raising concerns about:
- Access to ministers personal contacts
- Sensitive communication leaks
- Targeted financial fraud on VIP numbers
- Possible espionage and data theft
Cyber analysts believe such attacks aim to harvest contacts, impersonate officials, and launch larger scams using official identities.
Police & Cybersecurity Response
Telangana Cyber Crime Police has issued an urgent advisory:
- Do not install any APK received through WhatsApp claiming to be from SBI.
- SBI never sends KYC update links through WhatsApp or SMS.
- KYC updates must be done only through official bank apps or in branches.
The Cyber Security Bureau is tracing the origin of the attack and examining the possibility of a wider network targeting political offices across India.
Connection to Rising SBI KYC Fraud Cases
This incident follows a growing number of SBI KYC scams nationwide, where victims lost lakhs of rupees after downloading similar fake apps. In many cases, malware captured OTPs, banking login details, and UPI passwords, leading to unauthorized withdrawals.
Safety Tips for All Users
- Never download APKs sent via WhatsApp, even from known contacts.
- Enable two step verification on WhatsApp.
- Visit your bank branch or use the official SBI app for KYC updates.
- If you have installed any suspicious app, Switch off mobile data immediately and contact cyber police.
