Mumbai: In a striking case highlighting the growing sophistication of cyber frauds in India, a 25-year-old man from Jharkhand has been arrested for allegedly duping a Bombay High Court judge of over ₹6 lakh by posing as a customer care executive and tricking him into downloading a malicious mobile application.
The accused, identified as Mazhar Alam Israil Miyan, is believed to be part of a wider cyber fraud network operating from Jharkhand’s Jamtara region—an area that has repeatedly surfaced in investigations related to organized online scams. Preliminary findings suggest that he is linked to at least 36 cyber fraud cases spanning across 10 states, indicating a well-established and active criminal footprint.
FCRF Launches Premier CISO Certification Amid Rising Demand for Cybersecurity Leadership
According to investigators, the incident began in late February when the judge attempted to redeem reward points on his credit card. Unable to reach the official customer care helpline due to network congestion, he searched online for an alternative contact number. Unknowingly, he dialed a fake number planted by cyber fraudsters.
The accused, posing as a bank representative, gained the victim’s trust during the call and guided him through a series of steps under the pretext of assisting with reward redemption. As part of the process, the judge was asked to download a mobile application via a link sent by the caller. However, the app failed to install on his iPhone.
Sensing an opportunity, the fraudster advised the victim to switch to an Android device, claiming compatibility issues. The judge then inserted his SIM card into another Android phone and proceeded to download the application. This step proved critical, as the malicious app enabled the fraudster to gain access to sensitive financial information.
Once the app was installed and card details were entered, the accused swiftly executed unauthorized transactions, siphoning off approximately ₹6.02 lakh from the victim’s account. The entire operation was carried out within a short span, leaving little time for detection or intervention.
Realizing the fraud soon after, the judge promptly filed a complaint, triggering an investigation. Using digital trails such as IP logs, transaction records, and call data analysis, authorities were able to trace the accused to Jharkhand. He was arrested within about 10 days of the complaint being filed.
Investigators revealed that such frauds typically involve creating fake customer care listings online, which appear legitimate to unsuspecting users. Victims searching for assistance often land on these numbers and unknowingly initiate contact with cybercriminals. The fraudsters then use social engineering tactics to manipulate victims into sharing confidential information or installing malware-laden applications.
Cybercrime experts note that these scams are increasingly becoming more targeted and convincing. Fraudsters often exploit urgency, trust, and lack of awareness to execute their plans. The use of remote access apps or APK-based installations is particularly dangerous, as it allows attackers to monitor device activity, intercept OTPs, and gain control over financial transactions.
This case also underscores the risks associated with downloading applications from unverified sources. Unlike official app stores, third-party links can host malicious software designed to bypass security checks and compromise user data.
Authorities have urged the public to remain vigilant while seeking customer support online. Users are advised to rely only on official websites and verified contact numbers. Additionally, they should avoid downloading apps from unknown sources or clicking on unsolicited links, especially those received via messages or calls.
The investigation is ongoing, with efforts underway to identify other members of the network and uncover the full extent of the operation. Officials are also examining financial trails to track the movement of siphoned funds and potentially recover the stolen amount.
Overall, the case serves as a stark reminder of the evolving nature of cybercrime in India. As digital transactions become increasingly common, the need for awareness, caution, and robust cybersecurity practices has never been more critical.
