Hyderabad man loses Rs. 3.9 lakh in bank fraud involving APK malware

Hyderabad:  A 59-year-old government employee from Hyderabad lost ₹3,92,903 in a bank fraud case after unknowingly installing a malicious APK file sent by a fraudster posing as a bank official.

The victim received a phone call from mobile number 9123317117. The caller identified himself as a Relationship Manager from YES Bank and claimed there was an error in the address linked to the victim’s bank account. To correct the issue, the caller requested personal details, including the victim’s date of birth and address proof, which the victim shared.

Following this, the caller sent an APK file to the victim’s phone and instructed him to install it. At the time the file was received, the victim’s phone was switched off. However, once the device was powered back on, an amount of ₹3,92,903 was fraudulently debited from the victim’s account. The victim has lodged a complaint online and reported the incident to bank officials. The case is currently under investigation.

Public advisory:

Authorities have warned the public against sharing sensitive personal details such as date of birth, Aadhaar, PAN, OTPs, and passwords over the phone. People are advised not to install unknown APK files or apps received via SMS or WhatsApp, as these are often used to gain unauthorized access to bank accounts. Banks do not send APK files or ask for KYC updates through links or third-party applications. Any bank-related communication should be verified directly with the branch or official customer care.

In case of suspected fraud, individuals are advised to switch off mobile data, uninstall any suspicious apps, and notify their bank immediately. Complaints can be filed at cybercrime.gov.in or by calling the national cybercrime helpline 1930. In emergencies, victims may also contact 8712665171 via call or WhatsApp.