A new and serious form of cyber crime has emerged in the capital, prompting Cyber Crime Branch of the Police Commissionerate Bhopal to issue a special alert for citizens. Fraudsters are now misusing official Government processes, such as Special Intensive Revision (SIR) of the voter list, to request OTPs (One-Time Passwords) and trick people into installing a fake APK file. This not only targets bank accounts but also leads to the theft of photos and UPI data. Police are calling this a high-risk cyber attack and urging immediate caution. This fraud specifically targets individuals who easily trust Government procedures.

 

The main objective of these fraudsters is to gain complete control of the consumer’s device using Remote Access Trojan (RAT) malware. Psychological Tactics: ‘Final Verification’ deception: Cyber criminals are employing a new and psychologically manipulative trick. They call citizens posing as Government officials and create an impression that the citizen’s voter information is incorrect. They falsely claim that an OTP has been immediately sent for ‘final verification’ to update SIR form and that providing it is mandatory. This tactic creates fear and urgency in the victim, pressuring them to share the information without thinking.

 

After obtaining the OTP, they attempt to trick people into installing a suspicious file named ‘SIR.apk’ on their mobile phones. According to the Cyber Crime Branch, this APK file is actually a powerful malware designed as a Remote Access Tool. Once in the phone, the malware obtains all device permissions, giving the criminal complete control. This malware can steal sensitive information related to phone’s contact list, private photo gallery, SMS (which includes bank OTPs), banking apps, social media accounts and UPI logins.

 

This results not only in financial fraud and draining of bank accounts but also creates risk of identity theft and blackmail based on private data. Government Agencies Never Ask for OTPs or Apps: In its advisory, police gave a clear warning to citizens never to share an OTP received via call, WhatsApp, or SMS from any unknown person. This is the first rule of cyber security, as the OTP is only meant to confirm the final step of a financial transaction or account access. Police stated that no government department ever asks for an OTP or instructs citizens to download a third-party application via call or WhatsApp.

 

All official work related to voter list is conducted only on Government websites or designated booths. If any caller posing as a Government employee tries to pressure or intimidate, nearest police station should be immediately informed. Citizens must understand that installing a suspicious link or APK file is like opening the doors of their home to criminals, which can have severe legal and financial consequences. Cyber Crime Branch has appealed to citizens to make their family members and acquaintances, especially elderly individuals, aware of this new fraud so that no one falls victim to the criminals.

 

In case of any cyber fraud or attempted fraud, citizens can register a complaint at these numbers and website: Bhopal Cyber Crime Helpline: 9479990636 National Helpline Number: 1930Website: cybercrime.gov.in