Mumbai Cyber Police have busted a cyber fraud racket that allegedly created and circulated fake Android application files in the name of Mahanagar Gas Limited, arresting three men after tracing the operation across multiple states and intercepting them on a moving train in Bihar.
Fake MGL App Used to Gain Remote Access
The case came to light after a 64-year-old Mumbai resident, Upendra Narayan Muskur, was allegedly cheated of ₹2.35 lakh. Fraudsters posed as MGL officials and sent a malicious file named “MGL GAS UNBLOCK FILE.apk” through WhatsApp, claiming it would restore his gas connection.
Once installed, the application allegedly gave the hackers full remote access to his phone, enabling them to steal his banking credentials. Police said the fraud was carried out through a fake .APK file designed to mislead utility users.
FCRF Academy Launches Premier Anti-Money Laundering Certification Program
Digital Evidence Led Police to Jharkhand Link
Investigators said a cyber lab analysis of the .APK file revealed the digital footprint of its creator. By examining raw data, police linked the fraud to Mohammad Arif Astul Ansari, 28, from Jharkhand, and uncovered a trail involving IMEI records, IP logs and mobile numbers.
Mumbai Cyber Police tracked the accused through technical surveillance after they moved through Jharkhand and West Bengal. On April 22, with assistance from the Railway Protection Force, officers intercepted a train at Kishanganj in Bihar and arrested the suspects.
Larger Fraud Network Under Investigation
The arrested men have been identified as Mohammad Arif Astul Ansari, 28, Bilal Mohammad Naushad Sheikh, 28, and Mehboob Alam Mohammad Naushad Alam, 25. Police said five mobile phones containing various fraud-linked .APK files were seized.
The accused are being brought to Mumbai on transit remand. Investigators believe the arrests may help expose a wider syndicate targeting utility users across India. An officer as says the group specifically designed such malicious files for cyber fraud and sold them to other fraudsters for use across the country.
The officer further advise users to download apps only from trusted platforms such as official developer websites and established app stores, avoid links sent through WhatsApp, SMS or Telegram, and verify developer details carefully before installing any application.
About the author – Rehan Khan is a law student and legal journalist with a keen interest in cybercrime, digital fraud, and emerging technology laws. He writes on the intersection of law, cybersecurity, and online safety, focusing on developments that impact individuals and institutions in India.
