1. Woman Among Two Arrested by Odisha Cyber Crime Unit in Separate Investment Scam Cases
Odisha Cyber Crime Unit has arrested two persons, including a woman, in connection with separate online investment fraud cases. The accused allegedly lured victims with promises of high returns through fake platforms and messaging groups. Investigators are probing financial trails and identifying additional links to the scams.
2. ₹77 Lakh Lost in WhatsApp-Based Online Trading Scam
Victims lost ₹77 lakh in a cyber fraud linked to WhatsApp trading groups promising high investment returns. Police said fraudsters used fake dashboards and daily profit screenshots to gain trust before siphoning off funds and abruptly cutting communication once transfers were completed.
Certified Cyber Crime Investigator Course Launched by Centre for Police Technology
3. Two Cyber Fraud Cases Reported in Gangtok; Victims Lose Over ₹23,000
Gangtok police have registered two cyber fraud complaints in which victims collectively lost over ₹23,000. The cases involved online deception and unauthorised transactions, with authorities urging residents to exercise caution while responding to unknown digital links, calls, and payment requests.
4. Mumbai: Businessman Duped of ₹9.71 Lakh Through Fake ‘RTO Challan’ App
A Mumbai businessman was cheated of ₹9.71 lakh after downloading a fake ‘RTO challan’ mobile application, police said. The app allegedly gained access to the victim’s device and banking details, enabling fraudsters to siphon funds without immediate detection.
5. Pune: ‘Digital Arrest’ Scam Costs Victims ₹5.8 Crore
Pune police are investigating a ₹5.8-crore “digital arrest” cyber scam in which victims were threatened by fraudsters posing as law enforcement officials. The accused allegedly used fear of arrest and legal action to coerce victims into transferring large sums of money.
INTERNATIONAL
6. North Korea–Linked Hackers Target Software Developers Using Malicious VS Code Projects
Cybersecurity researchers have warned that North Korea–linked hackers are targeting software developers through malicious Visual Studio Code projects. The campaigns involve trojanised repositories designed to deliver malware, steal credentials, and establish long-term access, highlighting the growing focus on developer environments as high-value attack surfaces.
7. Three Vulnerabilities in Anthropic MCP Git Server Allow File Access and Remote Code Execution
Researchers have identified three serious vulnerabilities in the Anthropic MCP Git server that could allow attackers to access sensitive files and execute arbitrary code. The flaws pose risks to source code security and could enable supply-chain attacks if exploited in shared development environments.
8. Hackers Spread RAT Malware via LinkedIn Messages Using DLL Side-Loading Technique
Threat actors are using deceptive LinkedIn messages to distribute remote access trojans through DLL side-loading attacks. Victims are lured into downloading malicious files disguised as job-related content, allowing attackers to bypass security controls and gain persistent access to compromised systems.
Certified Cyber Crime Investigator Course Launched by Centre for Police Technology
9. ‘Evelyn Stealer’ Malware Abuses VS Code Extensions to Steal Developer Credentials and Cryptocurrency
Security analysts have discovered a new malware strain dubbed Evelyn Stealer that abuses Visual Studio Code extensions to steal developer credentials and cryptocurrency wallets. The malware targets tokens, browser data, and private keys, underscoring the increasing exploitation of trusted developer tools for credential theft and financial crime.
10. Tudou Guarantee Marketplace Suspends Telegram Transactions After Processing Over $12 Billion
The Tudou Guarantee marketplace has halted transactions conducted via Telegram after reportedly processing more than $12 billion in volume. The move follows increased scrutiny of illicit marketplaces using encrypted messaging platforms for escrow services, fraud, and money laundering activities.
