PDFs, Phishing & Patriots: How Pakistan-Backed Hackers Are Targeting Indian Devices

Cybersecurity experts are warning Indian users about a sharp increase in cyberattacks from Pakistan amid rising tensions between the two countries. A recent Economic Times report reveals that hackers are targeting personal devices across India using sophisticated phishing tactics disguised as government communication.

The attackers are distributing malicious PDF files titled “Report & Update Regarding Pahalgam Terror Attack”, mimicking official Indian government domains. These documents contain embedded phishing links that, once opened, can compromise PCs, smartphones, and laptops.

Cybersecurity firm Quick Heal has identified the group APT36—also known as Transparent Tribe—as the key actor behind these campaigns. The group is using CrimsonRAT malware in combination with tools like MeshAgent to remotely control infected systems. APT36’s sub-group, SideCopy, is reportedly expanding its reach, targeting Indian oil, railway, and infrastructure sectors using a new malware variant called CurlBack RAT.

These attacks are not isolated. They’re part of a larger cyber conflict involving hacktivist groups on both sides. Indian group ‘India Cyber Force’ allegedly breached multiple Pakistani entities, while Pakistan-based ‘Team Insane PK’ retaliated by hacking into the Indian Army College of Nursing website.

Experts emphasize that these digital assaults now form a strategic layer of geopolitical rivalry. “They’re no longer random disruptions,” said PwC’s Sundareshwar Krishnamurthy. “They’re calculated moves in a larger conflict.”

To stay safe, users must avoid opening suspicious emails, verify sources, and keep software updated. Cyber hygiene is now a frontline defense.

Read also;

• Viral Jagjit Singh Video Sparks Debate on Music Originas Amid India-Pakistan Tensions
• India-Pakistan Tensions Spill into Cyberspace After Pahalgam Tragedy