Hyderabad: A 57-year-old resident of Riyasat Nagar in Hyderabad lost more than ₹4.5 lakh after falling victim to a fake doctor appointment scam that involved the installation of a malicious APK file on his mobile phone. According to experts from the Future Crime Research Foundation (FCRF), the case is part of a growing pattern of cyber frauds in which criminals exploit everyday online needs and the public’s increasing dependence on app-based services.
As per the complaint, the victim was searching online for a phone number to book a doctor’s appointment. After calling a number that appeared in search results, the person on the other end shifted the conversation to WhatsApp. Claiming to be an appointment coordinator, the caller sent an application file titled Doctors_Appointment.apk and asked the victim to download and install it to confirm the booking.
Certified Cyber Crime Investigator Course Launched by Centre for Police Technology
The victim was instructed to enter personal details through the app and pay a nominal token amount of ₹10 to finalise the appointment. As the process appeared routine, he complied. What he did not know was that the APK file was malware designed to compromise his phone and give fraudsters unauthorised access to banking applications and sensitive personal data.
Phone compromised within hours
Soon after installing the file, the victim noticed unusual activity on his phone and attempted to uninstall the application. When that failed, he disconnected the device from Wi-Fi and switched it off. However, FCRF experts note that in such cases, malware becomes active immediately after installation and often completes its core functions before the user takes corrective action.
The following morning, when the victim checked his bank balance using the PhonePe app, he discovered multiple unauthorised transactions. Investigation revealed that fraudsters had siphoned off ₹4,57,829 from his accounts.
The victim immediately contacted the National Cyber Crime Helpline (1930), following which a formal complaint was registered and the case taken up for investigation.
According to Future Crime Research Foundation experts, such frauds are rising sharply, with criminals using fake appointments, customer service updates and verification requests as entry points to trick users into installing malware.
How APK malware fraud works
FCRF explains that APK-based scams rely on persuading victims to install applications from outside the official Google Play Store. Once installed, these apps demand extensive permissions, enabling fraudsters to remotely control the device, record keystrokes, intercept OTPs and access banking and payment platforms.
In most cases, victims remain unaware that their phones have been compromised until money is withdrawn from their accounts. By that time, the financial damage is often substantial.
FCRF experts point out that scammers deliberately ask for small “token payments” to reduce suspicion and make the interaction appear legitimate, while their real objective is to gain backend control of the device.
Online searches becoming a trap
According to FCRF cyber researchers, a large number of victims are falling prey after trusting phone numbers and links found online without verification. Fraudsters use search engine optimisation techniques and fake listings to push their numbers to the top of search results, then shift conversations to platforms like WhatsApp, where malicious files can be shared easily.
The Foundation stresses that no legitimate hospital, clinic or service provider asks users to install third-party APK files or share sensitive information over messaging apps.
Future Crime Research Foundation advisory
The Future Crime Research Foundation has issued a detailed public advisory warning against APK-based frauds carried out in the name of medical services, utilities and customer support.
FCRF has advised citizens to:
- Avoid trusting phone numbers found through unauthorised websites or random online searches
- Never download APK files received via WhatsApp, SMS or unknown links
- Install applications only from the Google Play Store or verified institutional websites
- Treat requests for small “token payments” as warning signs
- Never share banking details, personal information or OTPs with unknown individuals
- Immediately disconnect internet access and inform the bank if suspicious activity is detected
The Foundation has emphasised the urgent need for digital literacy campaigns, particularly for senior citizens and first-time smartphone users, who remain the most vulnerable targets.
Victims of cyber fraud are advised to immediately call 1930 and register complaints at www.cybercrime.gov.in.
A growing digital threat
Experts at the Future Crime Research Foundation say the Hyderabad case reflects a wider surge in malware-driven financial fraud across India. As digital payments, telemedicine and app-based services expand rapidly, fraudsters are evolving their tactics just as fast.
FCRF warns that even a seemingly harmless ₹10 transaction can become the gateway to devastating financial loss, underlining the need for constant vigilance, verification and awareness in India’s digital ecosystem.
About the author — Suvedita Nath is a science student with a growing interest in cybercrime and digital safety. She writes on online activity, cyber threats, and technology-driven risks. Her work focuses on clarity, accuracy, and public awareness.
