A Delhi-based chartered accountant lost nearly ₹75,000 within minutes after downloading a malicious file sent to her on WhatsApp, highlighting the growing threat of cyber fraud targeting bank customers. The victim was lured by fraudsters who promised to increase her credit card limit, police said.

According to investigators, the woman was contacted by callers posing as officials of Kotak Mahindra Bank. They convinced her to download a file sent on WhatsApp, claiming it was required for a credit card limit update. Soon after installing the file, identified as a malicious APK, her mobile phone was compromised, and unauthorised online purchases worth ₹75,694 were made using her credit card.

Police revealed that the accused had previously worked with a credit card company, which allowed them access to sensitive customer data. Using this information, the gang created a fake Kotak Mahindra Bank mobile application embedded with malware. They used fake SIM cards to contact potential victims and sent the APK file under the guise of official banking procedures.

Also Read: 2 Arrested for Pro-Khalistan Slogans as Part of Pannun-Linked Sleeper Cells

Once victims installed the file, the fraudsters gained full access to their phones and credit card details. The stolen money was used to buy electronic items through quick-commerce platforms such as Zepto, with deliveries made to Faridabad. The goods were later resold on online marketplaces like OLX to convert them into cash.

Following an FIR filed on February 4, Delhi Police’s cyber cell tracked the delivery locations to Lakkarpur village in Surajkund, Faridabad. Four people — Abhishek Kumar Jha (24), Ashish Kumar Ojha (23), Vivek Kumar alias Monu (37) and Ikraar (23) — were arrested, and four mobile phones were recovered. Police have urged citizens to avoid downloading unknown APK files and reiterated that banks never send apps or links through WhatsApp.

Also Read: Skill Ministry Rolls Out Free 1-Month BFSI Internships: GST to Advanced Trading