A firm employee in Muradabad has reportedly lost ₹2.85 lakh in a suspected cyber fraud after unknown attackers allegedly hacked his mobile phone and carried out multiple unauthorized transactions through Paytm, raising fresh concerns over rising cases of digital financial crimes where victims claim no OTP or banking credentials were shared.
Registration Begins for FutureCrime Summit 2026, India’s Largest Cybercrime Conference
The Fraudulent Transactions
Muradabad-based employee Deepak works at a packaging and printing factory and informed authorities that he first noticed suspicious activity when transaction alerts began appearing on his phone during work hours. Soon after, he realized that his bank account was being debited repeatedly without his authorization.
He later discovered that four separate transactions had been executed over multiple days, including transfers of ₹50,000, ₹45,000, and two additional payments of ₹95,000 each, all routed to unknown accounts. The total loss added up to ₹2.85 lakh, according to his complaint filed with local authorities.
The victim stated that he never shared any OTP, ATM details, or banking credentials with anyone and maintained that all his financial information remained secure. He suspects that sophisticated malware or remote access tools may have been used to compromise his smartphone and banking applications.
Police and Cyber Cell Investigation
Police officials confirmed that a case has been registered under relevant sections of the Information Technology Act following the complaint. Investigators have begun tracing the digital footprints linked to the fraudulent transactions and are coordinating with banking institutions to identify the destination accounts.
Cyber cell teams are examining mobile data logs, device activity patterns, and transaction records to determine how the device was compromised without triggering standard security alerts such as OTP verification or two factor authentication prompts.
This incident highlights growing concerns over mobile based financial frauds in which attackers bypass traditional security systems using advanced hacking techniques, social engineering, or malicious applications installed on victims devices without their knowledge.
Evolving Hacking Tactics
Authorities have urged users to remain cautious while using digital payment platforms and to regularly monitor account activity, update security settings, and avoid installing unknown applications or clicking suspicious links that could compromise device security.
According to preliminary assessments, investigators are also considering the possibility that the attack may have involved device cloning or unauthorized screen mirroring, allowing fraudsters to access banking apps in real time without requiring direct possession of the victim credentials. Such methods have increasingly been reported in cases involving sophisticated cybercrime networks operating across multiple regions.
Officials noted that financial fraud cases involving mobile banking applications have grown significantly due to increased digital payment adoption. Criminal groups often exploit weaknesses in device security, phishing links, and fake application updates to gain control over smartphones, making it difficult for victims to detect unauthorized activity until substantial losses occur.
Securing Digital Wallets
Banking experts emphasize that enabling stronger authentication layers, such as biometric verification, device binding, and transaction alerts, can significantly reduce the risk of such frauds. They also advise users to regularly check app permissions and ensure that remote access features are disabled unless absolutely necessary.
In response to rising incidents, cyber security agencies continue to strengthen awareness campaigns urging citizens to adopt safer digital habits, avoid sharing sensitive information, and report suspicious transactions immediately to banking helplines and law enforcement platforms to prevent further financial damage.
Investigators are also reviewing transaction routing patterns and beneficiary account histories to determine whether the stolen funds were moved through layered accounts or converted into digital assets. Early findings suggest that rapid transfers between multiple accounts may have been used to obscure the money trail and delay recovery efforts.
Authorities continue to urge citizens to enable multi layer security protections on all financial applications and to remain alert to unsolicited messages or calls that request installation of remote access tools or sharing of screen permissions, which are commonly used in high level cyber fraud operations.
Cyber specialists further recommend maintaining updated operating systems and installing verified security software to minimize exposure to malware based attacks that can silently operate in the background and intercept sensitive financial information without user awareness. Further vigilance is essential.
