The Top Ten cyber crime news summaries on The420 are meticulously curated by Future Crime Researchers from the Future Crime Research Foundation (FCRF) and powered by Algoritha Security Pvt. Ltd. These summaries feature the most critical cyber crime developments from around the world. Keep reading and stay safe.
1. Class 10 Dropout Arrested for Operating Pan-India Cyber Fraud Racket
Police have arrested a Class 10 dropout accused of running a pan-India cyber fraud racket targeting victims across multiple states. Investigators said the accused used fake digital identities, phishing techniques, and mule bank accounts to siphon off money, exploiting gaps in cyber awareness and enforcement.
2. ₹15-Lakh Cyber Scam in Kannur: Gang Posed as Enforcement Directorate Officials
Police in Kannur have uncovered a ₹15-lakh cyber fraud in which a gang impersonated Enforcement Directorate officials to extort money from victims. The accused allegedly threatened legal action and arrest, coercing targets into transferring funds to accounts later traced to the fraud network.
3. ₹55-Crore Cyber Fraud Money Trail Leads Investigators to Rae Bareli Trader
Investigators probing a massive cyber fraud have traced a ₹55-crore money trail to a trader based in Rae Bareli. Officials said the funds were routed through multiple accounts and intermediaries, pointing to a larger organised network involved in laundering proceeds of cybercrime.
Certified Cyber Crime Investigator Course Launched by Centre for Police Technology
4. Rourkela Police Bust Mule Account Network; City Union Bank Employee Among Seven Held
Rourkela police have busted a mule account racket facilitating cyber fraud transactions, arresting seven people including a City Union Bank employee. The accused allegedly helped open and operate accounts used to route fraud proceeds, enabling scammers to quickly move and withdraw illicit funds.
5. Delhi Police Uncover Cyber Fraud Network Using 20 Shell Companies, Two Arrested
Delhi Police have dismantled a cyber fraud network that operated through at least 20 shell companies, arresting two accused. Investigators said the entities were used to layer and launder cybercrime proceeds, masking the origins of funds siphoned from victims through online fraud schemes.
INTERNATIONAL
6. Long-Running Web Skimming Campaign Steals Credit Card Data From Online Checkout Pages
Security researchers have uncovered a long-running web skimming campaign that compromised online checkout pages to steal customers’ credit card details. Attackers injected malicious scripts into payment forms, silently harvesting card numbers, expiry dates, and CVV data, exposing weaknesses in website security and third-party integrations.
7. Telegram to Introduce Warnings on Proxy Links Amid IP Address Exposure Concerns
Telegram has announced plans to add warning labels to proxy links following concerns that certain configurations could expose users’ IP addresses. The move aims to improve user awareness and privacy protection, particularly for individuals relying on proxies to bypass censorship or enhance anonymity online.
8. Russian Group BlueDelta (Fancy Bear) Uses Malicious PDFs to Steal Login Credentials in Seconds
Cybersecurity researchers have warned that Russian-linked threat group BlueDelta, also known as Fancy Bear, is using weaponised PDF files to steal login credentials within seconds. The technique exploits embedded links and social engineering, allowing attackers to rapidly harvest usernames and passwords from targeted victims.
9. Everest Ransomware Group Claims Breach of Nissan, Alleges Theft of 900GB of Data
The Everest ransomware group has claimed responsibility for a cyberattack on Nissan, alleging it stole around 900GB of internal data. The automaker has not confirmed the claim, while cybersecurity teams assess the impact and verify the authenticity of the leaked information.
10. Malicious Chrome Extension Poses as Trading Tool to Steal MEXC API Keys
Researchers have identified a malicious Google Chrome extension masquerading as a cryptocurrency trading tool that steals API keys linked to the MEXC exchange. Once installed, the extension harvested sensitive credentials, potentially allowing attackers to execute unauthorised trades and drain users’ crypto accounts.
