Akhil Bhartiya Cyber Suraksha Sangathan (Regd.)
Regd. with Registrar of Society of NCT Delhi-Regd. No-287
Cyber Criminals se Suraksha, Digital India ki Raksha
अखिल भारतीय साइबर सुरक्षा संगठन (पंजी)
भारत की पहली साइबर क्राइम इन्वेस्टीगेशन एन जी ओ
ऑनलाइन रहें सतर्क, साइबर अपराध से रहें सुरक्षित
www.abcss.org Email: info@abcss.org
AMIT MALHOTRA
(Cyber Crime Investigation Specialist)
Founder Akhil Bhartiya Cyber Suraksha Sangathan
18 yrs experience in crime prevention, detection and investigation. Certified Ethical Hacker from Ec-Council. Certified Cyber Crime Investigator from Asian School of Cyber Laws. Presently working in the area of cyber crime investigation.
⚠️ How Mobile App Crimes Are Carried Out
- Distributing malicious APK files via WhatsApp, SMS and fake websites
- Uploading fake banking, shopping and government apps on Play Store
- Fake loan apps demanding excessive permissions to access contacts & photos
- Installing spyware through innocent-looking utility apps (flashlight, calculator)
- Creating fake UPI payment apps that redirect payments to fraudsters
- Using screen-sharing apps to gain remote control of victim's phone
- Fake dating and friendship apps harvesting personal photos for blackmail
- Cloned banking apps stealing credentials when victim logs in
✅ How to Protect Yourself from App Crimes
- Install apps ONLY from Google Play Store or Apple App Store — never from links
- Always check app developer name, ratings and number of reviews before installing
- Read all permission requests carefully — deny unnecessary access
- Never install APK files shared via WhatsApp, SMS or websites
- Enable Google Play Protect to scan apps for malware automatically
- Regularly review and remove unused apps from your phone
- Never grant accessibility permissions to apps that don't need it
- Check your phone's battery and data usage — spyware drains both unusually
Fake Loan App / Predatory Lending App Fraud
Illegal lending apps offer instant personal loans without documentation by requesting access to contacts, photos, SMS and gallery. After disbursing small loans, they charge extortionate interest rates and processing fees. When victims cannot repay, recovery agents harass family members using stolen contact lists — sending morphed obscene images of the victim to contacts to cause shame and force immediate payment.
Spyware & Stalkerware Apps
Apps disguised as device cleaners, flashlights, battery optimisers, games or system tools that secretly install spyware — recording calls, reading messages, tracking GPS location, activating camera/microphone and transmitting all data to fraudsters. Used by domestic abusers to monitor partners and by criminals to gather intelligence for targeted fraud or blackmail.
Fake Banking & UPI App Fraud
Cloned apps that mimic legitimate banking applications — SBI YONO, HDFC Mobile Banking, PhonePe, Google Pay — with identical interfaces. When victims log in, their credentials are captured and used to drain accounts. Fake UPI apps also send fraudulent payment request QR codes that debit money from the victim's account when scanned.
Screen Sharing / Remote Access App Abuse
Fraudsters posing as bank officials, tech support agents or government representatives instruct victims to install AnyDesk, TeamViewer or QuickSupport apps — claiming they need to "fix an issue" or "process a refund." Once the screen sharing is active, fraudsters can see banking passwords, OTPs, execute transactions and install additional malware remotely.
Fake Dating / Friendship App Sextortion
Fake dating, matrimonial or friendship apps used to establish romantic relationships with victims. Once trust is established, victims are manipulated into sharing intimate photos or videos. These are then used for sextortion — threatening to share content with family, friends and employers unless money is paid repeatedly.
Fake Gaming & Investment App Fraud
Fraudulent gaming apps, fantasy sports platforms and cryptocurrency trading apps that display fake profits to encourage larger deposits. Initial small withdrawals are permitted to build trust. Once a significant sum is deposited, the app freezes — requiring additional payments for "tax clearance" or "withdrawal fees" that never result in actual withdrawals.
Fake Government & Health Service Apps
Fake apps impersonating Aadhaar, EPFO, Ayushman Bharat, e-Shram, Umang or Digilocker — used to harvest Aadhaar numbers, PAN, bank details and personal information. Also includes fake vaccine certificate apps, Covid test booking apps and other government service clones designed to steal identity documents.
Fake Shopping & Delivery App Fraud
Fraudulent e-commerce apps offering luxury goods, electronics or branded items at unbelievably low prices. After payment, either no delivery is made, inferior counterfeit products arrive, or the app disappears. Also includes fake delivery tracking apps that request payment to "release packages from customs" — no package exists.
Keylogger & Banking Trojan Apps
Malicious apps that run invisibly in the background, recording every keystroke including banking passwords, credit card numbers and OTPs as they are typed. Banking trojans specifically target mobile banking apps — overlaying fake login screens on top of real banking apps to capture credentials, then using them to initiate unauthorised transactions.
SMS Hijacking & OTP Interception App
Malicious apps that request "SMS read" permissions — seemingly for OTP auto-fill — but actually forward all incoming SMS messages (including bank OTPs) to fraudsters in real time. With live access to victim's OTPs, fraudsters can authenticate fraudulent banking transactions, reset passwords and take over accounts without the victim's knowledge.
The Fake Loan App Scam is India's most documented and socially destructive mobile app crime — it has driven victims to suicide due to harassment and public shaming. RBI has blocked over 1,200 such illegal apps. Here is exactly how it operates:
Step 1 — App Download via Ad or WhatsApp
Victim sees a social media ad or receives a WhatsApp message for an "instant loan" app promising ₹5,000–₹50,000 in minutes with no documents. They download the APK from a link (not Play Store).
Step 2 — Excessive Permissions Granted
The app demands access to Contacts, SMS, Photos, Gallery, Camera and Microphone — claiming it's needed for "KYC verification." Once granted, all data is uploaded to fraudsters' servers.
Step 3 — Small Loan Disbursed with Hidden Charges
₹10,000 loan is "approved" but only ₹6,000 is credited — ₹4,000 deducted as "processing fee." Repayment of ₹15,000 demanded within 7 days at 300%+ annual interest rate.
Step 4 — Harassment & Public Shaming
If repayment is delayed even by 1 day, recovery agents call the victim's contacts, send morphed obscene images of the victim to family members and threaten to post videos online — causing severe psychological trauma.
App Shared via WhatsApp Link or Third-Party Website — Not Play Store
Legitimate apps are available on official stores. Any app shared via WhatsApp forward, SMS link or a random website as an APK file is extremely likely to be malicious. Google Play Store vets apps for malware — third-party APKs have no such protection.
App Requests Permissions Far Beyond Its Purpose
A calculator app that wants contacts access, a flashlight app that wants SMS access, a lottery app that wants gallery access — these are malware. The permissions requested should logically match what the app actually does. If they don't, uninstall immediately.
Very Few Reviews, Recent Upload Date and Unknown Developer
Fake apps often have very few reviews, a very recent upload date (days or weeks old), generic app names and unknown developer names that vaguely resemble legitimate companies. Check the developer's other apps — fraudulent developers usually have only one or two apps.
Loan App Not Listed as RBI-Registered NBFC or Bank
All legitimate digital lenders in India must be registered with RBI as banks or NBFCs. Verify any loan app's parent company on RBI's official website (rbi.org.in) before applying. If the lender cannot be verified on RBI's list — it is an illegal predatory lending app.
App Performs Significantly Worse After Installation — Battery Drain, Data Usage
Spyware and malicious apps consume significant battery power and mobile data running in the background. If your phone suddenly shows unusual battery drain, high data consumption or becomes significantly slower after installing a new app — that app may be spyware.
App Requests You to Disable Play Protect or Unknown Sources Warning
If an app installation process asks you to disable Google Play Protect or approve "Install from Unknown Sources" — this is a major red flag. Legitimate apps never require you to weaken your phone's security protections to install them.
App Shows Fake Investment Returns or Guaranteed Profits
Trading, investment, cryptocurrency or fantasy sports apps showing unrealistically high guaranteed returns (10% daily, 300% monthly) are fraud. No investment guarantees profits. Initial small payouts are designed to encourage larger deposits before the app vanishes with all deposited funds.
App Offers to "Process Refunds" by Asking You to Share Screen
Any app or caller that asks you to share your screen — especially while accessing banking apps — is attempting to steal your credentials and OTPs in real time. Legitimate bank customer care never asks customers to share their screen or install screen-sharing apps.
🚨 If You Have Been Victimised by a Malicious Mobile App
- Immediately uninstall the malicious app from your phone
- Change passwords of all banking, email and social media accounts from a different safe device
- Call your bank immediately — block your card and report any unauthorised transactions
- Revoke all permissions granted to suspicious apps in Phone Settings → Apps → Permissions
- Run a full antivirus scan using a reputed security app (Bitdefender, Kaspersky Mobile Security)
- If loan app harassment — collect all evidence (screenshots of messages, morphed images sent) and file complaint
- Call National Cyber Helpline 1930 immediately — especially for financial fraud
- File complaint at cybercrime.gov.in — select "Online Financial Fraud" or "Cyber Harassment"
- Report illegal loan apps to RBI at sachet.rbi.org.in
- File FIR at nearest police station or Cyber Crime Cell with all evidence and screenshots
Family Devastated After Fake Loan App Sends Morphed Photos to All Contacts
A Hyderabad autorickshaw driver borrowed ₹5,000 from an illegal loan app. Despite repaying ₹7,000, the app demanded ₹15,000 more. When he refused, recovery agents sent morphed obscene images of his wife to all 240 contacts on his phone — family, neighbours, colleagues and his children's teachers. The resulting social trauma led to severe depression in the family. Police arrested the app operators based in China operating through Indian shell companies. The case highlighted the need for strict RBI regulation of digital lending apps.
Retired Colonel Loses ₹2.2 Crore in Fake Trading App
A retired Army Colonel was approached via WhatsApp by a woman posing as a financial advisor who introduced him to a "special trading app" offering guaranteed 15% monthly returns. Over 6 months, he invested ₹2.2 crore attracted by fake profit dashboards showing growing returns. When he attempted to withdraw, the app demanded ₹30 lakh in "tax clearance." He reported to Delhi Cyber Cell; investigation revealed the app was operated from Southeast Asia with cryptocurrency payment channels making recovery nearly impossible.
Businessman's Corporate Data Stolen via Fake Utility App
A Mumbai businessman's phone was compromised after downloading what appeared to be a PDF reader app shared by a business contact (whose phone had itself been compromised). The app installed a banking trojan that recorded keystrokes and captured OTPs. Over 3 weeks, ₹38 lakh was transferred from his business account through 11 transactions each just below the bank's auto-alert threshold. The forensic investigation found the malware had been installed 22 days before the first transaction — during which it silently monitored banking patterns.
IT Professional Loses ₹4.8 Lakh After Installing AnyDesk on Fraudster's Instruction
A Bengaluru IT professional received a call from someone posing as an Amazon customer care executive offering a ₹2,000 refund. The caller instructed him to install AnyDesk for "processing the refund." Once screen-sharing was active, the fraudster navigated to the victim's SBI YONO app and used the visible OTPs to transfer ₹4.8 lakh in 6 transactions within 15 minutes. Ironically, as an IT professional he later said he was caught off guard because the caller was highly professional and the urgency created mental distraction.
IT Act Section 66: Dishonestly or fraudulently accessing device data through malicious apps — the criminal counterpart to Section 43 — imprisonment up to 3 years or fine up to ₹5 lakh or both. Covers all forms of app-based hacking and unauthorised data access done with fraudulent intent.
IT Act Section 66C — Identity Theft: Using banking credentials, passwords or OTPs captured through malicious apps — imprisonment up to 3 years and fine up to ₹1 lakh. Covers banking trojans, OTP interceptors and credential-stealing apps.
IT Act Section 66E — Privacy Violation: Apps that secretly activate the camera or capture intimate images without consent — imprisonment up to 3 years and fine up to ₹2 lakh. Also applicable to fake loan apps that misuse personal photos for morphing and distribution.
BNS Section 318 — Cheating: All app-based financial fraud — fake investment apps, fraudulent loan apps, fake shopping apps — imprisonment up to 7 years and fine. Primary criminal provision for organised app fraud operations.
BNS Section 308 — Extortion: Fake loan app recovery agents threatening to release morphed photos or send messages to contacts unless payment is made — imprisonment up to 3–10 years and fine. Multiple FIRs have been filed against illegal loan apps under this section.
BNS Section 351 — Criminal Intimidation: Recovery agents sending threatening messages and morphed images to victims and their contacts — imprisonment up to 2–7 years and fine depending on severity of the threats made.
RBI Digital Lending Guidelines 2022: All digital lending apps must clearly disclose the name of the NBFC/bank they are partnered with. They cannot store data beyond the loan period, must obtain explicit consent for each data access and cannot contact anyone other than the borrower for recovery. Apps violating these guidelines are illegal and should be reported to RBI at sachet.rbi.org.in.
Digital Personal Data Protection (DPDP) Act 2023: Apps must obtain explicit, informed consent before collecting any personal data. Consent must be specific to each type of data and can be withdrawn at any time. Companies violating these data collection provisions face penalties up to ₹250 crore from the Data Protection Board of India.
CYBER SAFETY TIPS
COMPLAINT & POLICE STATION
Follow Us
MASSMATIC CYBER FORENSIC COURSES
- BEGINNER'S LEVEL (1 Month Training)
- ADVANCED LEVEL (6 Month Training)
- EXPERT LEVEL (18 Months Training)
- CERTIFIED CYBER CRIME INVESTIGATION OFFICER (3 Months Training)
- COMPUTER HACKING FORENSIC INVESTIGATOR (3 Months Training)
- CYBER COMMANDO TRAINING V3.0 (3 Months Training)
- FREE CYBER SECURITY & AWARENESS COURSE (Register Here)