IT engineer falls prey to APK file fraud, loses 16.5L
Times of India | 14 March 2024
Kolkata: A 27-year-old IT engineer lost over Rs 16.5 lakh to the APK file fraud. Worse, recovery agents have started hounding him for EMIs against a Rs 14 lakh loan that the fraudsters took in his name.
Police have registered a case even as his lawyer has sent a legal notice to the bank questioning if all RBI mandated rules were followed when the “pre-approved loan” was assigned to him.
According to Bivas Chatterjee, the lawyer, the chain of events began last month when his client first received an APK link file asking him to share his KYC and PAN card details. He was threatened that if this was not done, his account would be deactivated.
The next morning, the victim — a BTech employed with a top MNC — received a call, asking him why he was not updating details on the link. This caller convinced him to share his details. In the next few hours, Rs 2.5 lakh was wiped out of his two accounts.
“Worse, a loan of Rs 14 lakh was raised in his name. The money was credited to his account but it was withdrawn in no time. A few weeks later, recovery agents were at his doorsteps, asking for EMIs. We have reminded the private bank of three rules framed by RBI while dispersing loans and have asked if all the requirements were fulfilled,” said Chatterjee.
According to cyber experts, clicking on an APK file runs the risk of installing an app that can steal personal and sensitive data stored in a cellphone. The stolen data might include PINs and passwords, SMS that sends OTP and even information that are being typed on the cellphone keyboard.
The data obtained will be automatically sent to the fraudster, who will use them to sipho money.
“If you have accidentally clicked on an APK file, the first step you can take is to uninstall that app as soon as possible,” said a cyber expert.