Nowadays, cyber crime is rising in very fast manner wherein misuse of social media is also involved. Once information is shared on social media platform, it will be available in the public domain. Cyber crime is a social and economic threat that requires cyber security awareness and responsible digital behaviour. These days, the most common types of cyber crime are financial fraud, identity theft and AI-driven cyber crime.
Social media users frequently share their personal information like name, date of birth, address, phone number, Aadhaar number, bank account number, location etc. on social media platforms which is misused by cyber criminals to dupe the people through phishing, vishing and identity theft. It is also observed that fraudsters either hack social media profile or create fake profiles and request money from victim’s family and friends.
Key Attributes of Cyber Crime through Social Media:
- Social media cyber crimes include fake profiles, impersonation, job fraud, sextortion, cyber stalking, cyber bullying, disseminating malwares etc.
- Fraudsters advertise high profit investment scams, fake loan apps etc.to dupe the innocent people.
- Cyber criminals hack social media accounts to sell user data or use personal information to create fake profile.
- Social media is also used to disseminate disinformation.
FCRF Academy Launches Premier Anti-Money Laundering Certification Program
.APK File Fraud
APK stands for “Android Package Kit”. .APK is the file format used to distribute and install apps on Android based operating system. Nowadays, cyber criminals are sending malicious .APK files through WhatsApp in the name of KYC update, marriage invitation, Govt. Schemes, RTO challan, 8CPC Calculator etc. If you click and install such malicious .APK file, your mobile phone will be hacked and SMS/OTP etc. will be forwarded to the fraudster. WhatsApp can also be hacked through such malicious .APK files, if two step verification is not enabled. Exp. KYC UPDATE.APK, WEDDING CARD.APK, RTO CHALLAN.APK, 8CPC CALCULATOR.APK.
Preventive Steps
- Do not install .APK file received through message/ email/ WhatsApp etc., otherwise your mobile phone may be hacked. Always install apps from Play Store/App Store.
- If such malicious .APK file is installed mistakenly, disconnect your mobile phone immediately from internet and uninstall such .APK file.
- Install and run a full scan using antivirus to detect spyware or malicious code.
- You can get free bot removal tool and mobile security application from Cyber Swachhta Kendra (Botnet Cleaning and Malware Analysis Centre) on https://www.csk.gov.in/security-tools.html
- If you are unable to trace .APK file, you can do factory reset of your mobile phone so that such malicious .APK file can be removed.
- Do not click on link received from illegitimate sources.
How to Protect Your Social Media Accounts
- Use Two-factor authentication.
- Secure your account using privacy setting.
- Do not share personal sensitive information on social media platform.
- Neither accept nor send friend request to unknown person.
- Do not click on shortened URL/suspicious link received on social media.
- Do not use public Wi-Fi for logging email/social media account.
- Do not send money if request received through social media platform without verifying the genuinity of the sender even if they appear to come from a known person.
- Immediately delete personal sensitive data from social media platform, in case of suspected breach.
How to Protect Your WhatsApp from Hacking
You must Enable Two Step Verification in WhatsApp. Steps are given below:
- Go to WhatsApp Setting
- Click on Account
- Click on Two-Step Verification
- Click on Turn On
- Enter 6 digits PIN
- Add email address (Optional) which is used in case you forget your PIN
What to do in Case of WhatsApp Hacking
To deactivate your WhatsApp account through email, you can send a request to WhatsApp at email ID support@whatsapp.com as per following:
Subject: “Lost/Stolen: Please deactivate my account” and include your phone number in international format (Exp. +917822XXXXXX).
Body of email: “Lost/Stolen: Please deactivate my account” +917822XXXXXX
Reporting of Cyber Crime
- In case of financial cyber fraud, you should call on National Cyber Crime Reporting Helpline Number 1930.
- You can report all types of cyber crime at National Cyber Crime Reporting Portal https://cybercrime.gov.in.
- You should also inform to your bank about financial cyber fraud so that online banking facilities can be disabled to avoid further loss.
- You can also report cyber crime complaints in the nearest police station.
- Suspected cyber fraud can be reported at National Cyber Crime Reporting Portal https://cybercrime.gov.in.
- You can report suspected fraud communication (call/ message) at Chakshu portal https://sancharsaathi.gov.in
- In case of social media related cyber crime, you should also report to the concerned social media platform.
You can follow CyberDost, the official social media account of the Indian Cyber Crime Coordination Centre (I4C), Ministry of Home Affairs, Govt. of India for getting latest update on cyber crime and cyber security.
Be Aware and Be Cyber Safe!
Disclaimer: “All contents presented in this article are the personal views of the author. These materials can not be considered as official views of the author.”
Author: Satyendra Sharma (Chief Manager- IT), Punjab National Bank, Head Office: Centre for Learning & Innovation
