Headline: Mumbai’s suburban area of Goregaon has once again come under the spotlight due to a serious cyber fraud incident that highlights the growing threat of mobile-based financial scams. In this case, cybercriminals managed to steal a large sum of money from a businessman by tricking him into installing a malicious mobile application disguised as an official RTO challan. The incident has raised concerns about digital safety, banking alerts, and the increasing sophistication of cybercrime in India’s metropolitan cities.
The victim in this case is Deepak, a chemical trader residing in Goregaon, Mumbai. According to his complaint, an amount of ₹9.71 lakh was fraudulently withdrawn from his HDFC Bank account through multiple unauthorized transactions. The scam came to light after he noticed discrepancies in his bank balance days later. What made the incident more alarming was the fact that he did not receive any SMS or email notification from the bank despite such a significant amount being debited from his account.
The chain of events began on December 16, 2025, when Deepak received a file on WhatsApp titled “RTO Challan.apk.” The sender’s number appeared to belong to one of his customers, which lowered his suspicion. Believing it to be a legitimate traffic-related notice, he downloaded and installed the application on his smartphone. This single action turned out to be the gateway for cybercriminals to gain full control over his device.
On December 21, 2025, three unauthorized transactions were carried out from Deepak’s bank account, resulting in a total loss of ₹9.71 lakh. The hackers remotely accessed his mobile phone and operated his banking applications without his knowledge. The stolen money was transferred to multiple unknown accounts held in Union Bank and Indian Overseas Bank. By the time the victim became aware of the fraud, the funds had already been siphoned off.
The investigation revealed that the fraud was executed using a spyware-infected APK file. Once installed, the file allowed the attackers to monitor the phone, capture sensitive information, and remotely control applications. Such malicious files often bypass basic security checks and remain hidden in the background, making them extremely dangerous for unsuspecting users. In this case, the attackers used the spyware to access banking credentials and authorize transactions seamlessly.
The presence of malicious software was discovered when Deepak’s brother scanned the affected smartphone using the m-Kavach 2 mobile security application. The scan confirmed that spyware had been installed on the device, validating the suspicion of a cyber attack. This discovery played a crucial role in understanding how the fraud was carried out and provided important leads for further investigation.
Following the discovery, a formal complaint was lodged with the Bangur Nagar Police, who promptly registered a First Information Report against unknown persons. The police are currently examining WhatsApp chat screenshots, bank transaction records, and other digital evidence to trace the origin of the scam. Efforts are also being made to identify the mule accounts used to receive the stolen funds.
Cyber security expert Premendra Sharma has warned that such scams are becoming increasingly common and dangerous. He emphasized that people should never download or install APK files received through WhatsApp or unknown messages. According to him, these files can give fraudsters full control over mobile devices, exposing bank accounts, personal data, and private communications to severe risk. His advice underscores the importance of digital awareness and cautious online behavior.
This incident serves as a strong reminder for smartphone users to remain vigilant while handling unknown files and links. Official agencies such as transport authorities or banks do not send APK files through messaging platforms. Users should rely only on official app stores for downloads, keep their devices updated with security patches, and enable real-time banking alerts. Reporting suspicious activity immediately can also help minimize financial losses.
The Goregaon cyber fraud case reflects a broader pattern of digital crimes targeting individuals through social engineering and malicious software. As online transactions and mobile banking continue to grow, so does the responsibility of users to protect their digital assets. Awareness, timely action, and cooperation with law enforcement agencies remain key to combating such cyber threats effectively.
