Cybercriminals are coming up with new ways to scam people, and now they don’t even need an OTP or PIN to drain your bank account. A single mistake can cost you thousands. Here’s how the scam works and what you can do to protect yourself.

How a Woman in Delhi Avoided a Major Cyber Fraud

Recently, a 26-year-old woman from New Delhi narrowly escaped a major online scam. She had purchased an HP laptop from a well-known electronics store, but a few days later, she received a message from an unknown number.

The message claimed that she had won a gift voucher and needed to share her bank details to claim it. However, something seemed off—the message mentioned two different store names, making her suspicious. Trusting her instincts, she avoided clicking the link and saved herself from potential fraud.

Unfortunately, not everyone is this lucky. Cybercriminals are constantly refining their methods, using sophisticated tactics to steal money without the victim even realizing it.

How This Scam Works Without an OTP

Traditionally, most online frauds required criminals to trick users into sharing an OTP (One-Time Password) or PIN. However, new scams bypass this requirement entirely. Here’s how:

1. Phishing Messages – Scammers send fake messages pretending to be from a bank, e-commerce platform, or telecom provider, offering discounts, cashback, or prize money. If the victim clicks on the link, their bank account details may get exposed.
2. Fake Customer Service Calls – Fraudsters pose as representatives of well-known brands and ask victims to verify their details, gaining access to their accounts.
3. Call Merging Scam – Criminals call victims and ask them to merge a call with another "VIP number." This lets them eavesdrop and steal banking details.
4. Malicious APK or RAT Downloads – Attackers send harmful Android application files (APK) or Remote Access Trojan (RAT) links. Once installed, these grant full control of the victim’s phone, enabling fraudsters to steal data or make unauthorized transactions.

How to Protect Yourself from Cyber Fraud

✅ Never Click on Unknown Links – If you receive an unexpected message about rewards, cashback, or contests, do not click the link.
✅ Avoid Sharing Personal Details – Banks and companies never ask for personal or banking details over a call or message. If someone asks, assume it’s a fraud.
✅ Be Cautious of Call Merging Requests – If someone requests you to merge calls, refuse immediately.
✅ Download Apps Only from Official Sources – Install applications only from trusted platforms like Google Play Store or Apple App Store.
✅ Report Suspicious Activity Immediately – If you suspect fraud, contact your bank and report the incident to the Cyber Crime Cell.

As cyber scams evolve, staying alert is your best defense. Spread awareness, educate others, and always verify any request related to your financial information.