Rajasthan Police Warns Against Fake Wedding Invites on WhatsApp
Rajasthan Police Warns Against Fake Wedding Invite Scams

Jaipur: Rajasthan Police on Saturday issued a cyber alert warning that a simple click on a digital wedding invitation could give fraudsters access to phones and bank accounts, as cyber criminals exploit the ongoing wedding season.

Officials said scammers are circulating fake wedding cards on WhatsApp, using malicious files and links to steal personal data and siphon off money. Police have urged people to stay cautious as such cases see a spike during festive and wedding months.

How the Scam Works

According to DIG (Cyber Crime) Shantanu Kumar Singh, fraudsters are using emotionally persuasive messages and familiar identities to lure users. Police outlined three key methods being used in the scam.

Wide Pickt banner — collaborative shopping lists app for Telegram, phone mockup with grocery list

Method 1: Malicious APK Files

Fraudsters send a file labelled Marriage.apk. Once downloaded, it installs malware that can access the phone's camera, microphone, messages and OTPs, allowing hackers to breach bank accounts.

Method 2: Fake Links

Users receive a shortened web link posing as a wedding invite. Clicking it either leads to a fake page seeking personal details or silently installs spyware on the device.

Method 3: Hijacked WhatsApp Accounts

Fraudsters impersonate known contacts and send messages such as asking the recipient to 'check wedding venue details', increasing the chances of the link being opened.

Safety Measures

Police advised users to avoid downloading APK files, verify suspicious messages by calling the sender, and refrain from clicking on unknown or shortened links. Officials also recommended keeping mobile security features such as Google Play Protect enabled.

What to Do If Scammed

Victims were urged to immediately report incidents on the cyber helpline 1930, through the national cybercrime portal, or at the nearest police station.

Understanding APK Files

An Android Package Kit (APK) is the file format used to install apps on Android devices. It is used to manually install apps outside official app stores and contains all app components. When opened, Android installs the app directly. However, APK files can be modified to include malware or spyware, often bypassing official security checks. They may silently access sensitive data and can intercept OTPs and banking details.

Pickt after-article banner — collaborative shopping lists app with family illustration

Other Methods Used Alongside APK Scams

  • Fake links leading to phishing pages or spyware downloads
  • Shortened URLs that hide malicious destinations
  • Hijacked contacts to make messages appear trustworthy

How to Stay Safe

  • Do not download APK files
  • Avoid clicking on unknown or shortened links
  • Keep Google Play Protect enabled
  • Install apps only from trusted app stores