Cyber Crime
Top 10 Daily Cybercrime Brief by FCRF [15.01.2025]: Click here to Know More
Important global cybercrime news has been curated by FutureCrime Researchers to keep you informed about various types of digital fraud occurring worldwide and to provide insights into the best mitigation strategies. Read below to learn more in detail.
1. Ludhiana: Two Senior Citizens Duped of Rs 28 Lakh in Cyber Fraud
Two elderly Ludhiana residents lost Rs 28.9 lakh to cyber fraud. A retired ONGC official, was duped of Rs 14.9 lakh after filling an online form for a fake smart health card. Fraudsters accessed his bank details, prompting him to secure funds. An FIR has been filed by cyber police.
2. Retired Jharkhand Officer Scammed of Rs 2.27 Crore in 11 Days by Maharashtra Cyber Gang
A retired Coal India officer in Ranchi lost Rs 2.27 crore to cyber fraudsters posing as government officials. Over 11 days, the scammers manipulated him into transferring funds, citing false legal threats. An FIR was filed, and CID investigations trace the gang to Maharashtra. The victim reported via helpline 1930.
Registrations Open for FutureCrime Summit 2025: India’s Largest Conference on Technology-Driven Crime
3. Phone Hacked: Rs 1.25 Lakh Withdrawn from Account, Recovery Efforts Underway
A cybercriminal hacked a victim’s phone and withdrew Rs 1.25 lakh. The victim reported the incident to Cyber Thana, where swift action by in-charge led to the recovery of the full amount. Relieved, the victim praised the police for their prompt response and successful resolution of the case.
4. Rs 26 Lakh Swindled on Pretext of Stock Market Investments
Cybercriminals defrauded Noida-based IT engineer of Rs 26 lakh by luring him into a fake stock market scheme. Using a WhatsApp group and posing as SEBI-registered Abbott Wealth Management staff, they gained his trust with initial profits. The fraud was exposed after withdrawal requests were denied. Police are investigating.
[Nominate for Make in India Awards]
5. Young Woman Loses Rs 42,000 in Online Fraud Scheme
A 22-year-old woman from Jharkhand’s Devghar was defrauded of Rs 42,000 by a scammer posing as a nodal officer for the Mainiya Samman Yojana. The fraudster obtained her OTP during a call, leading to the fund transfer. She reported the cybercrime to the police, who are investigating the case.
INTERNATIONAL
6. UK Proposes Ransomware Payout Ban for Public Sector
The UK government has launched a 12-week consultation on banning ransomware payments in the public sector, extending to hospitals, schools, and critical infrastructure. Proposals include mandatory incident reporting and potential payment licensing. Aiming to disrupt criminal networks, the move faces debate over feasibility, unintended consequences, and organizational readiness.
[Nominate a Fraud Risk Management Professionals]
7. Hackers Exploit Fake YouTube Links to Steal Login Credentials
Cybercriminals are using fake YouTube links to redirect users to phishing pages, stealing login credentials through URI manipulation and layered redirections. These attacks, linked to the Storm1747 group, employ phishing kits like Tycoon 2FA to create convincing fake pages. Advanced tools like ANY.RUN sandbox help detect and analyze such threats.
8. Shropshire Man Sentenced for Hacking Social Media Accounts
A 35 year old, from Shrewsbury, was sentenced to 10 months, suspended for 18 months, for hacking social media accounts, stealing private images, and sharing them online. Convicted under the Computer Misuse Act, he also received a five-year Criminal Behaviour Order. Police praised the victims’ bravery in supporting the investigation.
[Nominate a Whistleblowers]
9. Ex-Employee from Nelson Sentenced for Deleting Critical Business Data
A 40 year old , from Nelson, accessed her ex-employer’s system, deleting critical user and visit data, disrupting operations, and risking client safety. She pleaded guilty to unauthorized computer acts, receiving a 12-month suspended sentence, community service, and £3,000 compensation. Police urged businesses to prioritize cybersecurity against insider threats.
10. Google OAuth Flaw Exposes Millions Through Abandoned Startup Domains
Research highlights a flaw in Google’s OAuth system, allowing attackers to exploit defunct startup domains to access old employee accounts in services like Slack and HR systems. Despite Google’s initial defense, the issue is under review, labeled high impact. Experts urge stronger user identifiers to prevent similar vulnerabilities.