Achive.php thecybershark, Author at The Cyber Shark - Page 15 of 19
Contributor

Author: thecybershark

Doctor Loses Rs 6 Lakh to Cybercriminals Through Malicious APK File and 30 OTPs

Doctor Loses

Doctor Loses Rs 6 Lakh in Cyber Scam After Downloading Malicious APK File Posing as Bank KYC Update Raipur: A doctor loses more than Rs 6 lakh from his savings account and fixed deposits after falling victim to a sophisticated cyber scam. The scammers lured him into downloading a malicious APK file that posed as an IndusInd Bank KYC update. The event took place at the Sarasvati Nagar police station. Fraud via APK File Doctor Satish Rajput, who works at a private hospital in Samta Colony, complained that he received a message on his phone between February 23 and February 26 with a link titled “IndusInd KYC APK.” Unaware that the file was downloaded to his phone, he accidentally tapped on the link, thinking it was a genuine KYC update request from the bank. He had no idea that the APK file was a malicious program that gave hackers access to his mobile device. Suddenly, on February 27, he began receiving many OTP messages on his phone while he was at a mall seeing a movie. Approximately thirty OTPs were generated in a brief amount of time, and funds started to drain from his account. Hackers stole his money even though he didn’t give anyone the OTPs. Massive Financial Loss Dr Rajput claims that a total of Rs 6 lakh was taken out of his bank accounts, which included several fixed deposits and his savings account. The following is a breakdown of the amount stolen: Rs 1,92,000 from his savings account Rs 2,00,000 from one fixed deposit Rs 1,80,000 from another fixed deposit Rs 28,000 from a third fixed deposit On March 1, as soon as he realized he had been deceived, he notified the police. The Saraswati Nagar police have begun investigating the scammers and are working to locate them. Rising Cybercrime Tactics Doctor loses a significant sum in this instance, which demonstrates the rising practice of fraudsters accessing bank accounts without authorization using APK file scams. In such cases, doctor loses hard-earned savings as cybercriminals constantly devise new ways to defraud gullible people. Authorities have also recently issued warnings against call-merging scams, in which con artists pretend to be friends and combine calls to intercept OTPs and cause financial losses—yet another method through which a doctor loses money and peace of mind. Police Advisory The public is advised by authorities to refrain from downloading unfamiliar APK downloads, confirm any correspondence about their banks directly with their banks, and promptly report any strange calls or messages to the cybercrime helpline 1930.

Protect Yourself Online Matrimonial frauds – Information Security Awareness

Online matrimonial frauds

Online matrimonial frauds is on the rise these days, posing a huge threat to individuals looking for a partner through online platforms. Fraudsters take benefit of the vulnerabilities of unknowing people, causing them financial loss, emotional distress, and potential harm. Over two decades, online matrimonial sites have gained popularity in India where most marriages are still arranged by parents. The whole traditional matchmaking process changed and was set aside when the wave of online matrimonies came into existence. For Indian bachelors looking to explore and find a lifelong partner, online matrimonial sites offer the right fusion of modern technology and traditional Indian traditions.  This increased demand for online services that run searchable databases of marriage-related content, such as Shaadi.com, Jeevansathi.com, and Matrimony.com Ltd.  But, matrimonial sites are not completely safe. There is a possibility that you will regret not taking certain precautions. The number of people falling for marriage website scams has gone up. Dangers Financial Loss Emotional Manipulation: Identity Theft: Blackmail and Extortion: Vulnerable Groups: People Looking for Companionship: People who are searching for a relationship or who are emotionally fragile may be more prone to falling for fraudulent schemes and scams. Elderly People: Due to their possible substantial financial holdings and low understanding of contemporary technology, the elderly are frequently targeted since they may be more trusting and less accustomed to internet platforms. The present scenario Online matrimonial frauds Matrimonial sites come under ‘intermediaries’ within the IT Act 2000. They are responsible for the frauds that are perpetrated through their sites. Matrimonial sites. However these websites do not have any stringent KYC (Know Your Customer) procedures in place and hence readily accept documents/facts provided by fake profiles, which results in fraud being committed. With the increase in frauds through matrimonial sites, Cyber Law Due Diligence becomes a very important way to put an end to the use of matrimonial and dating sites as means of deception and fraud. The Information Technology Act, of 2000 is the Cyber Law of India that mandates observance of Cyber Law Due Diligence and Internet Intermediary Obligations in India. Cyber Law Due Diligence means taking proper and Reasonable Care and Caution while dealing with Online/Technological Transactions and Activities. Modus operandi With the minimal KYC/verification procedures in place to register on online matrimonial websites, the fraudster usually follows the following modus operandi: The fraudster initially creates a fake profile with attractive descriptions. In most cases, the person seems to be settled or working abroad, thus making actual meetings difficult. Later they look for gullible profiles to fall into their trick. In most cases, the targets are widows or divorced while some are elderly women looking for life partners. Also, they look for targets who are economically sound. Later, phone numbers, and email addresses are shared to increase personal communication and gain trust. Once the communication is established the fraudsters delete the profiles on the online matrimonial website and only communicate through phones, emails, or phone messengers. After gaining trust, money is demanded on various pretexts like customs clearance of costly gifts or as conversion charges for foreign currency, government clearance for diamonds, gold, or inherited wealth. All this money is asked as an online transfer and the person never meets the victim. Once they receive the money they never respond to the victim which makes it difficult to trace. Warning Signs Be alert to the red flags that can help you identify online matrimonial fraudsters: Are not willing to show their face and avoid face-to-face meetings, they are also reluctant to come on video chat, profile photo may not be theirs. Ask for a money transfer, citing some emergency, initially a small sum and later a large amount May not have a social profile or have few friends on social media Hesitate to share family/ workplace details Express “love” too quickly even before fully understanding each other The profile looks too good to be true for that person to express interest to you They call from multiple numbers. They usually don’t give a number to call back. Even if they give you a number, they don’t pick up when you call. Later, they call you back from a new number It sounds inconsistent or confusing when you ask for personal details, and their information is marked with inconsistencies. Are you in a mad rush for early marriage, without a valid reason Request for deletion of your profile immediately after getting in touch with you Ask for email username/ password or credit card/ bank account details Come up with false stories to gain sympathy How to save yourself Explore the various available online matrimonial websites Do a good Google search about the available Online matrimonial frauds platforms. Check for reviews from registered users and find a suitable one. Also, most matrimonial websites add a verified batch of profiles that are checked by their team. If you see a verified batch, you can go forward with the person without thinking much. Check out how genuine the website is before you register. Make sure the site has good reviews from registered members. Do a profile check. While you rely on online ways to find your life partner you must take this responsibility and do a thorough profile check. Check every detail carefully. Do a proper check on current and permanent address, education workplace etc. At any point you think there is a mismatch, feel free to question the other person. Once you decide to go ahead, find out whether details given about the individual’s qualification, job, family background and such details are indeed true to avoid regrets at a later stage. Verify the details mentioned in the profile you are interested in, and do a profile check on social media platforms for further information about the person. If you do not find details on any social media, it is a red flag Slow and steady wins the race Marriage is a lifetime decision and you cannot take a chance here. Life is not a race, ensure

CloudSEK Report: India estimated to lose Rs 20,000 crore to cybercrimes in 2025

CloudSEK Report

India to Lose Rs 20,000 Crore to Cybercrimes in 2025, with Brand Abuse Accounting for Over Rs 9,000 Crore, Warns CloudSEK Report India is estimated to lose about Rs 20,000 crore to cybercrimes in 2025, as stated by a recent report by cybersecurity firm CloudSEK Report. The survey predicts that phishing scams, brand abuse, and phoney domains will be the general tactics used by cybercriminals this year. It is anticipated that when artificial intelligence (AI) develops further, hackers will employ sophisticated social engineering strategies to conduct fraudulent activities. Notably, it is estimated that brand name abuse alone will have a financial impact of more than Rs 9,000 crore. Our analysis has shown that cybercrime has caused financial damages of over Rs 20,000 crore, of which Rs 9,000 are attributable to brand name abuse alone. This is the greatest finding. The fact that brand abuse is linked to an astounding 70% of high-value scams and roughly one-third of all cybercrime events should serve as a wake-up call for India, according to Pavan Karthick M, Threat Intelligence Researcher at CloudSEK Report . The growing economic impact of cyber crimes in India is highlighted in CloudSEK Report white paper, which was published on Friday. It emphasizes how illegal use of trusted brand names for fraudulent purposes has grown to be a significant avenue for exploitation. Cybercriminals use phoney website names and fraudulent mobile applications in addition to brand impersonation to trick people. The financial industry is predicted to face the highest portion of these losses, accounting for Rs 8,200 crore, or 41% of the total, according to a sector-by-sector analysis in the research. Government services may sustain financial losses of Rs 3,400 crore, or 17% of the total impact, while the retail and e-commerce industries are expected to sustain a combined 29% of losses. The conclusions are based on information gathered from 200 firms, which includes 16,000 cyber threat occurrences involving brands and more than 5,000 domain takedowns. The Indian Cyber Crime Coordination Centre (I4C), which reported financial losses of almost Rs 11,333 crore in the first nine months of 2024 with a sharp increase predicted in 2025, is another source of official data cited in the article. CloudSEK Report in Businesses will experience reputational harm in addition to financial repercussions when their names are utilized fraudulently. According to the research, businesses may have to pay Rs 6,000 crore for legal actions, customer compensation, remediation activities, and improvements to security infrastructure. Individuals are anticipated to be most affected by these losses, though, with personal financial damages likely to approach Rs 14,000 crore by 2025.

Maharashtra sets up Cyber Corporation to tackle digital frauds, launches 1945 helpline

Maharashtra

Chief Minister Devendra Fadnavis stated on February 28, 2025, that Maharashtra had established a “cyber corporation” to combat digital fraud and that two other states had also provided a comparable service. The Navi Mumbai facility will serve as the state’s cybercrime headquarters. “I envision a time when cybercrime would account for 70% of all crimes and street crime will make up for 20% to 30% of all crimes. He stated during the Mumbai Tech Week 2025 event that Cyber Corporation is the greatest platform in India for integrating social media handles, banks, and non-banking financial organizations (to track crimes). “We have all the necessary licenses and the best tools in the world.” A single (helpline) number, 1945, has been acquired. Fadnavis did list the states that reached out to Maharashtra to establish a comparable facility. Digital fraud and other cybercrimes have surged across the nation. In the Financial Year 2023-24 (FY24), there were 36,075 frauds in the banking industry, more than four times the number in the previous five years. According to the Reserve Bank of India’s annual report, frauds involving digital payments (card or internet) rose from 2,677 in FY20 to 29,082 in FY24. Startups leaving Maharashtra Fadnavis said the state did not create sufficient infrastructure Maharashtra in Mumbai between 2009 and 2014, leading to a high cost of living and start-ups moving to cities like Bengaluru and Hyderabad. “The IT-enabled industry could no longer afford to remain in Mumbai.” Our ineffective work caused the IT (information technology) revolution to spread to several cities. However, we began addressing that after 2014. The state would build a start-up incubator dubbed M-Hub, according to Fadnavis, who was first appointed chief minister in 2014 and is currently serving his second term after a hiatus. In Navi Mumbai, we intend to develop a large amount of plug-and-play space. It will be similar to Hyderabad and Bengaluru.

Pig butchering scam: New cyber fraud targets unemployed youth, students, housewife’s

pig butchering scam

The government has issued an alert about a new cyber fraud scheme called the ‘pig butchering scam,’ which targets unemployed youth, students, and vulnerable individuals. Victims not only lose money but are also forced into cyber slavery.      NEW DELHI: The government has warned of a new cybercrime scheme known as the “pig butchering scam,” which preys on vulnerable people, students, and jobless youth. Victims not only lose money but are also forced into cyber slavery, officials said on 27 February 2025. The Union Ministry of Home Affairs claimed that this was also emphasized in their most recent annual report, which was released last month. They also mentioned that dishonest people and organizations have been observed using Google services platforms to commit these crimes. A senior official stated, “Reports from the cyber intelligence wing indicate that a new online fraud module, called ‘Pig Butchering Scam’ or ‘Investment Scam,’ has been observed circulating in cyberspace. It targets unemployed youths, housewives, students, and those in need, who are either tricked into losing large sums of money every day or lured into engaging in cyber slavery.” “The Google Ads platform offers a convenient way to post targeted ads from across the border,” he stated. the “Pig Butchering Scam” or the “Investment Scam,” this scam is a global phenomenon that involves widespread money laundering and even cyber slavery. According to sources, it is believed that this kind of scam began in China in 2016. They claimed that in these fraud modules, criminals prey on unsuspecting people, with whom they gradually gain trust, then persuade them to invest in cryptocurrency or another profitable scheme before embezzling the money they have earned. The fattening of pigs before their slaughter is the source of the comparison to pig butchering, according to the officials. According to the officials, cybercriminals use this fraud model to deceive victims by gaining their trust and then using them as slaves to commit various online crimes. The Indian Cyber Crime Coordination Centre (I4C) within the MHA cooperated with Google to share threat intelligence for periodic prompt action to successfully deal with the danger when the trend became apparent, according to the officials. In addition to Google, the officials stated that sponsored Facebook links are being aggressively detected and shared with the social media platform for appropriate action. These connections are being used by hackers to initiate illicit financing applications in India.

Cyber Fraud Alert: ‘Digital Arrest’ Scam Defrauds Vice-Chancellor of Berhampur University of Rs 14 Lakh, Case Filed

Berhampur University

She placed the money into the scammer’s account after the con artists sought Rs 14 lakh from Berhampur University VC to free her from “digital arrest.” Berhampur University (Odisha): Even if authorities are frequently aware of the dangers that exist in cyberspace, scammers continue to come up with new strategies to trick people. The most recent victim is Prof. Geetanjail Dash, the vice-chancellor of Berhampur University in Bhanja, Bihar, who was allegedly defrauded of Rs 14 lakh after becoming the victim of “digital arrest.” How VC Fell Prey To Cyber Criminals Police claim that Prof. Dash was tricked by cybercriminals posing as Enforcement Directorate (ED) representatives. Subsequently, she was forced to believe that the ED was watching her because of an unreported cash deposit in a bank account in her name. The criminal, posing as an ED officer, called Prof. Geetanjail Dash on February 12. The scammer said that her Aadhaar number was discovered to be connected to a case of financial irregularities involving the payment of crores of rupees into her account, which the Supreme Court is currently investigating. Along with talking to her about her family, the unidentified caller advised her to empty her bank account before the audit. The Vice-Chancellor then allegedly revealed all of her details. The fraudster called her over the last four days and persuaded her to deposit a cheque for Rs 14 lakh. According to insiders, when the phone was turned off following the deposit, suspicion increased. The issue was brought to light following a complaint filed with the Berhampur University Cyber Police Station. Based on this, a case was filed on February 24 under several provisions of the Information Technology Act and the Bharatiya Nyaya Sanhita (BNS). The case was filed under BNS sections 318(4), 319(2), 336(2), 336(3), 340(2), 308(2), and 351(2) as well as IT Act sections 66(C) and 66(D), according to the police. What Berhampur SP Said Berhampur SP According to the complaint of Berhampur University VC Prof. Geetanjali Dash, a case was filed at the Cyber Police Station on February 24th, Saravana Vivek M said. On February 12, she claimed to have gotten a call from an unidentified number. The individual, posing as an ED officer, accused her of being involved in an ED case. She was informed that an account had been created in her name and that crores of illicit funds had been transferred into it. In the evening, she was held under digital arrest. She was asked to pay the accused offenders Rs 14 lakh for “release,” which she complied with and deposited into the scammer’s bank account. An investigation is underway, and the fraudsters in the case will be apprehended shortly. The top police official warned people not to answer unknown calls or give them personal information.”People should be aware of the cyber crimes happening around them and refrain from having contact with any such unknown person,” said the SP.

India’s Intensified Offensive Against Cybercrime: A Multi-Pronged Approach

Cybercrime

India Strengthens Fight Against Cybercrime, Disables Over 800,000 Fraudulent Accounts and Prevents Rs 4,800 Crore in Losses India is strengthening its hold on cybercriminals as authorities take decisive measures to destroy the network of digital fraud that has afflicted both individuals and organizations. The Indian Cybercrime Coordination Centre (I4C), which is leading the nation’s continuing cybercrime attack, has achieved great progress in thwarting the activities of con artists and fraudsters. By November 2024, the gadgets that enabled several illicit operations were rendered inoperable by the authorities, who had disabled approximately 669,000 SIM cards and 132,000 IMEIs. In a series of surgical attacks, 59,000 WhatsApp accounts and more than 1,700 Skype IDs—both frequently used by thieves to plan fraud—were also shut down. This thorough strategy has dealt serious harm to the cybercrime infrastructure. The Cyber Fraud Mitigation Centre (CFMC), which unites banks, financial institutions, and law enforcement to coordinate real-time responses to fraud, is an essential component of the offensive. A significant accomplishment of the CFMC is the freezing of 860,000 mule accounts, which stopped the illicit flow of funds. To stop fraudulent transactions, the government has also implemented a digital database called the Suspect Registry. Over Rs 1,400 crore has been saved as a result of the successful blocking of 560,000 suspect transactions. With new rules aimed against international spoof calls—a common way for scammers to pose as Indian authorities—India is making efforts that go beyond its borders. Furthermore, The Oppidan Financial Cyber Fraud Reporting and Management System (introduced in 2021) has saved Rs 3,431 crore by enabling consumers to report fraud via an online portal and toll-free helpline. Seven Joint Cyber Coordination Teams (JCCTs) have been placed in well-known cybercrime hotspots like Mewat and Jamtara as part of the increased nation’s policing efforts. The preparatory goal of these groups is to strengthen interstate collaboration to combat digital fraud. The National Cyber Forensic Laboratory (NCFL) in New Delhi is an essential part of law action advanced forensic analytical support, having assisted with over 11,000 cybercrime cases since its installation. India’s outlook on combating cybercrime is developing into a complete security strategy that combines technology, intelligence, and citizen copartnership to keep criminals at bay. This multifaceted approach strengthens the country’s cyber defences against potential attacks while also combating digital fraud.

Minister Harsh Sanghvi Says Gujarat First State To File Cyber Terrorism Charges In CCTV Leaks, Announces Swift Action

Minister Harsh Sanghvi

Gujarat is the first state to use cyberterrorism charges in CCTV leak cases, according to Minister Harsh Sanghvi, who praised the police’s prompt investigation and response. The Gujarat Police have caught the mastermind of a nationwide CCTV hacking ring, stopping hackers from committing a massive scheme to breach thousands of cameras nationwide. Harsh Sanghvi, the Gujarat State Minister of Home Affairs, announced the arrest in a statement to the Gujarat Assembly. Gujarat is the first state to add cyberterrorism charges to instances involving CCTV breaches, according to Sanghvi. He commended the state government’s quick and calculated response, which was spearheaded by Chief Minister Bhupendra Patel. Minister Harsh Sanghvi intones that to expedite the legal process and guarantee that the case is handled in a fast-track court, the state has designated a special prosecutor. The treatment of a female patient in a private maternity home in Rajkot is the subject of a widely shared video. The footage was a component of a bigger attack that affected thousands of CCTV cameras in India. While simply arresting the medical workers could have dismissed the problem, Sanghvi noted, the Gujarat Police adopted a proactive stance, conducting a thorough investigation and revealing a significant plot. Minister Harsh Sanghvi claims that these hackers used Virtual Private Networks (VPNs) from nations including Atlanta, Romania, Georgia, and Japan to hide their identities. The organization has compromised more than 50,000 CCTV cameras in the past eight months using Telegram channels. The feeds from these cameras originated from movie theatres, private homes, schools, colleges, and corporate offices. The accused ran 22 channels that featured obscene menus connected to the compromised video. After a video of the female patient’s examination went viral on February 17, 2025, Gujarat Police acted right away. The Rajkot incident was quickly the result of investigations after a case was lodged at the Ahmedabad Cyber Crime Police Station. To identify the main sources of the illicit activity, police snuck into Telegram groups and pretended to be subscribers. The hackers were part of a large network that took advantage of WiFi-connected CCTV cameras’ lax security settings, including passwords that were simple to figure out. Public authorities should raise awareness about the significance of protecting digital surveillance systems, Minister Harsh Sanghvi urged. To stop such events, Gujarat Police have also suspended the accused’s bank accounts and sent notifications to social media companies to make sure that unlawful content is taken down.

Fraudster arrested for ensnaring hundreds in a sextortion scheme while posing as a YouTube employee in Delhi

YouTube employee

The Delhi Police Crime Branch’s Cyber Cell detained a Rajasthani citizen on 25 February 2025 for reportedly impersonating Rahul Sharma, a YouTube employee, and extorting individuals by threatening to post their pornographic movies on the website. The defendant is a 27-year-old native of Bharatpur named Sahid. A non-bailable warrant bond was issued against him in connection with the 2022 case. Police said that to further scare certain victims, Sahid allegedly pretended to be Inspector Surender from the Delhi Police Crime Branch. He is accused of using WhatsApp video conversations to record hundreds of people’s graphic films and then blackmailing them. According to a report received by the cyber unit, in November 2022, the complainant was contacted by someone posing as a YouTube employee. The person claimed to have an offensive video of the complainant and requested payment to prevent it from being released. The victim initially transferred Rs 3.61 lakh to multiple bank accounts. However, as the extortion persisted, the plaintiff was forced to pay an extra Rs 25 lakh in several transactions. According to Aditya Gautam, Deputy Commissioner of Police (DCP), Cyber Cell Crime, “[Rahul Sharma]in YouTube employee was acting as an agent of one Sandeep Aggarwal who was previously arrested and had organized an extortion scheme along with others,” according to the results of the investigation. Using technology YouTube employee and on-the-ground surveillance, police tracked Sahid’s movements in several locations, including Bharatpur in Rajasthan and Nuh in Haryana. Following a raid in Yamuna Nagar and Haryana on 23 February, he was arrested and held under five days of remand, officials said. He was charged under Indian Penal Code (IPC) sections 384 (extortion), 419 (cheating by impersonation), 420 (cheating), and 120B (criminal cabal). Sahid admitted upon questioning that he had only completed Class 3 of Gokulpur, Nuh. He was raised as an orphan, married in 2009, and battled to make ends meet while farming for his wife and five kids. Through a friend named Wasim, he was exposed to a sextortion network run by a man named Mazid in 2022, according to the DCP. “Sahid joined the gang and started using false identities to conduct extortion and cyber fraud schemes. DCP Gautam continued, “It is anticipated that his arrest will result in the dismantling of a larger network of cybercriminals.”

Tata Technologies IT services reinstated after ransomware attack

Tata Technologies

Tata Technologies assured stakeholders that client delivery services will continue uninterrupted. A ransomware attack impacted some IT systems owned by Tata Technologies. As a result, the business temporarily suspended several IT services, but they have now resumed. It gave stakeholders peace of mind that client delivery services would go on as usual. With the assistance of specialists, the business is carrying out a sweeping investigation to determine the incident’s cause and implement the necessary corrective measures. “We are dedicated to defending the highest security and data protection standards, and are taking all necessary steps to minimise any potential risks,” the business said. This organization is regarded as one of India’s leading providers of ER&D services and provides outsourced engineering and digital modification resolves to creation clients across the globe. The Tata Electronics (TEPL) office in Hosur, Tamil Nadu, experienced a significant fire incident in September 2024. The incident is presently being investigated by forensic experts. Tata Technologies has emphasized the significance of boosting investment in upskilling programs to prepare India’s workforce for the demands of Industry 4.0 in a related development. In advance of the next Union Budget, the business presented these suggestions. Warren Harris, CEO and Managing Director, stated that policies that encourage innovation, encourage investment in cutting-edge technology, and make it easier to produce goods “in India, for India, and the To meet India’s $5 trillion economic goal, “in India, for India, and the world” is required.