India police warns public about wedding invitation phishing campaign

The Indian police have issued warnings about a scam that has been ongoing across the country. According to reports, criminals have figured out another clever way to steal money from unsuspecting users this festive season. They claimed that the bad actors are now exploiting the wedding season to dupe innocent victims on WhatsApp.

According to the Indian police, cybercriminals have revived the once-popular fake digital wedding invitation links sent via WhatsApp to hack mobile phones and steal money. The development was brought to light after Bijnor resident Dr. Omprakash Chauhan lost Rs. 31,000 (approximately $347) after clicking on a malicious wedding invitation link he received on WhatsApp.

Indian police warn residents over phishing attacks

According to the victim, he completely lost control of his mobile phone after he clicked on the link he received via WhatsApp. He highlighted that after he lost control, the criminals began their operations, moving the funds from his bank account.

He also added that all his personal information was transferred to an account that he identified as Cyber Thakur. After realizing what was happening. Chauhan filed a complaint with the Indian police.

The Indian police have also claimed that they have kick-started investigations into the theft. According to cyber experts attached to the Indian police, the fraudulent digital invitations are often disguised as Android Package Kits (APK), which are executable application files.

When a user downloads and opens the file, the malware in the application becomes active and takes over the smartphone. The malware gives the fraudsters complete control over the device.

The fraudsters, through the malware, can access bank accounts, UPI apps, passwords, and other sensitive data on the mobile phone. The dangerous aspect of this scheme is that it self-propagates. This means that once a victim clicks on the link and their device is compromised, the wedding card link automatically replicates and is sent to all the contact lists on their WhatsApp, continuously expanding the network of potential victims.

Police urge the public to be vigilant

Earlier this year, the Indian police shared the same warning after scores of people were affected and scammed in the wedding invitation phishing campaign. One instance was the case of a Gurugam man who lost Rs. 97,000 ($1,085) to scammers after falling victim to the scam. The man innocently clicked on the link and was locked out of his device. He claimed that immediately they assumed control, they moved the funds in three transactions.

In another event, the Indian police reported that a government employee lost about Rs. 190,000 ($2,120) to scammers after clicking on the phishing link that was sent on WhatsApp. The victim claimed that the invitation looked innocent, noting that he just wanted to see if he knew the people getting married. He added that after clicking the link, they took over his device. The victim claimed that the criminals stole the funds, noting that he has since reported the case to the police.

Meanwhile, the Indian police have warned the public to be vigilant. They noted that the crime is not new, having first observed it last year, around this time. They urged citizens to exercise caution before they open any link, file, or wedding invitation from a number that has not been presaved.

The Indian police claimed that even if the number has been pre-saved, they should verify that the party has not been scammed before proceeding to open the link.

Join Bybit now and claim a $50 bonus in minutes