CloudSEK’s Report According to, Indians are being trapped in a new e-challan fraud. The team of researchers has found that Vietnamese hackers are behind this and they are carrying out this scam by sending messages on WhatsApp. Hackers are sending fake traffic e-challan messages on WhatsApp under a high-tech Android malware campaign. This malware belongs to the Wromba family. It is reported that it has infected more than 4,400 devices and has carried out fraudulent transactions worth more than Rs 16 lakh by only one scam operator.
Threat researcher Vikas Kundu says that “Vietnamese are targeting Indian users by sharing malicious mobile apps on WhatsApp on the pretext of issuing vehicle challans.” These scammers pretend to be Parivahan Seva or Karnataka Police and send fake e-challan messages and trick people into installing a malicious app. The app works to steal personal information.
The report says that clicking on the link inside the WhatsApp message downloads an Apk masquerading as a legitimate application, which users install in a hurry or unknowingly. Once installed, the malware gains access to contacts, phone calls, SMS messages, and some important permissions including the ability to become the default messaging app.
It then steals OTPs and other sensitive messages, enabling hackers to log into victims’ e-commerce accounts, purchase gift cards and redeem them without leaving any trace. Using the malware, hackers reportedly accessed 271 gift cards, making transactions worth Rs 16,31,000. Gujarat has seen the highest number of attacks, followed by Karnataka.
To protect against such malware threats, CloudSEK advises users to be cautious and only install apps from trusted sources like Google Play Store. Apart from this, users are also advised to limit app permissions and review them regularly. Users should also keep their bank apps and smartphone operating system and security patches updated to the latest version.
