A shocking case of cyber fraud has been reported from the Sahibabad area of Ghaziabad, where a man allegedly lost ₹2.25 lakh from his credit card within minutes after his mobile phone underwent an automatic software update. The incident has raised serious concerns over digital security and the growing sophistication of cybercriminals.
The case is linked to Anish Khan, a resident of Naresh Vihar Colony in Khoda police station area. According to the complaint, his mobile phone suddenly initiated an automatic software update while he was at home. During the process, the phone screen went completely black and became unresponsive for nearly 10 to 15 minutes. When the device restarted, the victim noticed that unauthorized transactions had already been completed from his bank account.
Soon after the phone resumed normal functioning, the victim began receiving multiple SMS alerts from his bank, indicating three separate transactions totaling ₹2.25 lakh. The money was allegedly used to purchase gift vouchers through an online shopping platform. Realizing the fraud, the victim immediately contacted his bank’s customer care and blocked his credit card, but by then the funds had already been drained.
FCRF’s Flagship Cyber Law Certification Returns With a New Four-Week Cohort
Alleged hacking and early probe
The victim has alleged that cybercriminals hacked his mobile device during the update process and gained control over his banking credentials, leading to unauthorized withdrawals. He has filed a complaint at the local police station, following which the cyber cell has initiated an investigation into the matter.
Preliminary assessments suggest that the possibility of unauthorized access during a software update or malicious background activity cannot be ruled out. However, police officials have stated that no final conclusion has been reached yet, and a detailed technical analysis of the banking transactions and device logs is underway.
Expert view: fake updates, malware and remote access
Cybersecurity experts note that such incidents often occur when users unknowingly interact with fake update notifications or malicious links disguised as system updates. In some cases, remote access malware is installed on devices, allowing attackers to monitor activity, steal sensitive information, and execute financial transactions without the user’s consent. Experts advise users to avoid interacting with suspicious prompts and to rely only on official app stores and verified system updates.
According to a cybersecurity researcher, attackers often exploit moments when a device is inactive or rebooting to establish unauthorized access. Once inside the system, they can bypass security alerts and complete transactions rapidly, making it difficult for victims to respond in time.
Investigation steps and public concerns
The victim’s family has also expressed concern over the speed at which the transactions were executed, stating that even immediate action after receiving alerts was not enough to prevent the loss. The incident has created panic among residents in the locality, with many now becoming more cautious about mobile security and online banking practices.
Police officials have confirmed that data has been requested from the bank, telecom service providers, and the online platform involved in the transaction to trace the IP address and device used for the fraud. Investigators are also examining whether the case is linked to an organized cybercrime network targeting users through fake software updates and app-based scams.
An FIR has been registered against unknown cybercriminals, and the cyber cell is currently tracing the digital footprint of the transactions. Authorities have stated that further clarity will emerge once technical evidence is analyzed in detail.
The incident once again highlights growing vulnerabilities in digital banking systems and mobile device security, raising urgent questions about user awareness and protection against increasingly advanced cyber fraud techniques.
