In yet another alarming case of cyber fraud in the city, a businessman fell victim to a seemingly harmless link that ultimately cost him over ₹52.31 lakh. The incident, reported from the Aishbagh area, highlights how cybercriminals are increasingly using malicious APK files to gain full control of victims’ mobile devices.
How the APK Trap Was Set
According to the complaint, the victim, Mohammad Salim, received a suspicious link on his mobile phone in January. The moment he clicked on it, an APK (Android Package Kit) file was automatically downloaded and installed on his device. Initially, he did not suspect anything unusual, but that single click proved costly.
Sources indicate that although Salim later deleted the application from his phone, the damage had already been done. Cybercriminals had successfully infiltrated his device and were monitoring his activities in the background without his knowledge.
FCRF Launches Premier CISO Certification Amid Rising Demand for Cybersecurity Leadership
Slow, Stealthy Drain of Funds
Investigations revealed that the accused used the malicious application to gain unauthorized access to the victim’s banking credentials, OTPs, and other sensitive financial information. They then began siphoning off money through multiple transactions in a calculated manner to avoid immediate detection.
What makes the case particularly shocking is the duration of the fraud. Instead of a one-time transaction, the siphoning continued over a period of 41 days. Between January 13 and February 23, the fraudsters withdrew money in several installments, ultimately draining ₹52.31 lakh from the victim’s bank account.
Fraud Uncovered and Investigation Begins
The fraud came to light only in March, when Salim visited his bank to update his passbook. Bank officials informed him about the unusually large withdrawals made over the previous weeks, leaving him stunned. He then approached the local police station and lodged a formal complaint.
Following the complaint, an investigation was initiated. Officials are currently examining bank statements and transaction trails to identify the beneficiary accounts and trace those involved in the fraud.
Growing Threat of Malicious APKs and User Advice
Cyber experts say such cases often involve the use of remote access tools or spyware embedded in APK files. Once installed, these applications can take complete control of a smartphone, allowing criminals to monitor user activity and extract confidential data without raising suspicion.
Renowned cybercrime expert and former IPS officer Prof. Triveni Singh warned that cybercriminals are increasingly relying on social engineering tactics. “A simple link or app can give criminals full control over your device, putting your entire digital life at risk,” he said.
In the wake of the incident, authorities have issued a fresh advisory urging citizens to stay vigilant. Users are strongly advised not to click on unknown links or download APK files received via messaging platforms like WhatsApp.
Experts further recommend that if a suspicious app is detected on a device, it should be immediately removed and the bank and cyber helpline should be informed without delay to minimize potential losses.
This incident from Lucknow once again underscores a harsh reality of the digital age— even a minor lapse in caution can result in massive financial loss. Staying alert and informed remains the most effective defense against such cyber threats.
About the author – Ayesha Aayat is a law student and contributor covering cybercrime, online frauds, and digital safety concerns. Her writing aims to raise awareness about evolving cyber threats and legal responses.
Click Here For The Original Source.
