Cybercrime surge in Uzbekistan linked to APK scam wave on Telegram

Malicious APK files posing as official court summons are spreading rapidly across Telegram, threatening the personal data and financial security of users in Uzbekistan. Experts warn that these files act as a digital “key” for cybercriminals, and opening them is essentially equivalent to handing over total control of one’s personal information.

Photo: Julikam.net

The files typically arrive as fake court notifications and often incorporate the recipient's actual name to increase credibility. This tactic prompts users to open the attachments out of concern or curiosity. Once activated, these malicious applications allow attackers to gain remote access to the device, bypass security for financial apps to steal funds, and even propagate the scam by sending the same harmful files to the victim's entire contact list.

Security specialists emphasize that files from untrusted sources should never be opened or installed. If a suspicious application has already been installed, users are advised to immediately follow these emergency steps:

Disconnect the device from the internet or switch it to airplane mode to cut off the attacker's remote access.
Remove the application through the device settings and seek professional technical assistance if necessary.
Review all "connected devices" within payment applications such as Payme, Click, and Paynet to terminate unauthorized sessions.
Change the phone number linked to all bank cards and update security credentials.

The scale of the threat is illustrated by a recent case in the Syrdarya region, where a resident used malicious APK files distributed via Telegram to steal over UZS 2 billion from hundreds of victims' bank cards.