Residents of Visakhapatnam, popularly known as Vizag, have been hit by a massive wave of cyber fraud, losing a staggering sum of over ₹1 crore in just one month. The alarming trend involves victims clicking on seemingly innocent APK (Android Application Package) links, leading to their bank accounts being drained without them ever sharing any One-Time Passwords (OTPs).
How the Elaborate APK Scam Unfolds
Despite repeated warnings from the Vizag city police, fraud cases linked to unverified APK files continue to surge across the region. Cybercriminals are employing sophisticated methods, altering APK files with malware and distributing them through messages that perfectly mimic official communication from banks, courier services, and even traffic police.
In one recent incident, a victim lost over ₹1 lakh from his credit card after installing a fraudulent APK sent via WhatsApp. The caller, posing convincingly as a bank employee, persuaded the individual to share personal details and install what appeared to be a genuine bank application link. Within minutes, unauthorized transactions were made from his card.
Another Vizag resident fell prey to a fake traffic e-challan. Hackers impersonating traffic police officials demanded a ₹1,000 fine and tricked him into installing a malicious APK. Once installed, the fraudsters gained remote access to his smartphone and siphoned off more than ₹2 lakh from his accounts.
Modus Operandi: From Simple Links to Devastating Hacks
Police officials explain that the fraudsters often convert legitimate-looking webpages into app files, tweak the underlying code to embed malware, and use them to hack devices within minutes. These malicious apps are cleverly designed to bypass security measures and can even target users with limited technical knowledge.
A significant challenge for authorities is that these fraudulent apps are frequently hosted on random, free domains, making them extremely difficult to trace or take down promptly. The police have highlighted several common tactics used by these cybercrooks:
- Posing as bank representatives for urgent KYC updates.
- Offering fake pre-approved credit cards or loan schemes.
- Impersonating courier services about pending parcels.
- Sending fake traffic e-challans.
- Promoting fraudulent stock trading or investment apps.
Police Advisory: How to Protect Yourself
The Vizag police have issued a stern advisory urging citizens to exercise extreme caution. The primary recommendation is to download applications only from official and recognized sources like the Google Play Store. Citizens are advised to thoroughly verify the authenticity of any link received via WhatsApp, SMS, or email before clicking on it, especially if it prompts an APK download.
Avoid downloading APK files or clicking on links received from unknown or unverified contacts. Even if the message appears to come from a known entity like a bank, it is crucial to contact the institution directly through their official customer care number to confirm the communication's legitimacy. Do not share personal information, banking details, or OTPs with anyone over the phone or through such links.
As digital transactions become ubiquitous, such incidents underscore the critical need for heightened public awareness and vigilance against evolving cyber threats.
