Commercial company Cytrox sold five zero-day exploits to state-backed attackers and Armenia is among them.

A zero-day exploit is a technique used by attackers to attack systems with previously undiscovered vulnerabilities.

The TAG lists 5 different vulnerabilities that have been used to attack Android users, four of which affect Chrome and one affects Android.

The attackers used one-time links that looked like popular URL shortening services and targeted Android users using email.

Once clicked, the link redirected the target to a domain owned by the attacker who delivered the exploits, before redirecting the browser to a legitimate website. If the link was not active, the user was redirected directly to a legitimate website.