The Top Ten cyber crime news summaries on The420 are meticulously curated by Future Crime Researchers from the Future Crime Research Foundation (FCRF) and powered by Algoritha Security Pvt. Ltd. These summaries feature the most critical cyber crime developments from around the world. Keep reading and stay safe.
1. Two Arrested In Chandigarh For ₹8.94 Lakh Work-From-Home Scam
Police in Chandigarh arrested two individuals operating a work-from-home scam, collecting money from job-seekers promising remote employment. Victims paid upfront fees, but no jobs were given and the scammers vanished. Authorities warned that freelance/job-offer scams remain rampant — especially among students and recent graduates seeking work from home.
2. Mumbai Businessman Loses ₹35 Crore In Trading Scam
A wealthy Mumbai businessman was cheated out of ₹35 crore by fraudsters who convinced him to invest in a “high-return” trading scheme. The scammers used fake dashboards and falsified transaction records to build trust before disappearing. The case highlights escalating risks for high-net-worth individuals drawn to aggressive digital investment pitches.
3. Kerala TRP Scam Fuels ₹100 Crore Industry Fraud, Ratings System Under Fire
An alleged tampering of Television Rating Points (TRP) in Kerala has spiralled into a ₹100 crore fraud scandal, undermining advertiser trust. Broadcasters, agencies and media firms are demanding an overhaul of the ratings architecture. Experts warn that manipulation in media metrics can ripple into broader advertising fraud and digital-marketing trust deficits.
4. Temple Official Arrested In Tirupati Over Ghee Adulteration Case
A temple official in Tirupati was arrested for allegedly adulterating ghee used in religious offerings, raising ethical and public-health concerns. Though not a cyber-fraud, this case underscores how criminal activity often spans fraud, consumer safety and trust — emphasising that vigilance must extend beyond purely digital scams.
5. ED Raids Medical-College Scam Across 10 States, Multiple Locations Hit
Enforcement teams raided 15 locations across 10 states in connection with a wide-ranging medical-college admission scam. The alleged racket involved forged documents, false seat-allocations and bribes, potentially affecting hundreds of students. The crackdown came after extensive intelligence gathering suggesting systematic exploitation of education-related trust and desperation.
INTERNATIONAL
6. Customer Data Of SaaS Firm Gainsight Impacted In Recent Breach, Experts Warning Users
Security researchers have confirmed a breach at SaaS vendor Gainsight that exposed customer details, including potentially sensitive account information. Clients have been advised to reset credentials and monitor logins. The breach underscores rising risk of data leaks even in enterprise-grade platforms, reinforcing the need for robust vendor-security assessments.
7. Singapore Demands Apple, Google Prevent Government-Agency Spoofing On Messaging Apps
Authorities in Singapore have issued directives to major tech platform providers to curb spoofing of government-agency messages on apps. The move aims to prevent phishing attempts where scammers impersonate official agencies to extract OTPs or personal data. Users are urged to verify message authenticity before clicking links or sharing credentials.
8. Shai Hulud v2 Supply-Chain Attack Exploits GitHub Workflows, Developers Warned
The revived Shai Hulud v2 malware campaign has been detected abusing GitHub Actions workflows to inject malicious code into open-source projects. Over 10,000 repositories may be compromised, potentially distributing backdoors disguised as utility updates. Developers are urged to audit dependencies and restrict automated pipeline permissions immediately.
9. North Korean Hacker Groups Exploit NPM Packages To Spread Malware
Cybersecurity teams have found that hacker groups linked to North Korea are inserting malicious code into popular NPM packages, affecting millions of projects worldwide. Once installed, the tainted modules enable credential theft, data exfiltration, and covert crypto-mining — signalling that supply-chain attacks remain a top global cyber-threat.
10. New Malicious Chrome Extension Captures Browsing And Crypto Wallet Data
A recently discovered Chrome extension masquerading as a security tool was found stealing browsing history, saved credentials and cryptocurrency-wallet keys from users. Upon installation, it quietly siphons data to external servers, demonstrating how seemingly benign browser utilities can be used as potent surveillance and theft tools.
