Cybercriminals in 2026 have refined a dangerous new playbook, and Nagpur has emerged as a key target. Investigations reveal a sharp rise in highly customised WhatsApp scams in which fraudsters pose as traffic police officials, sending fake e-challans embedded with malicious APK files—transforming an otherwise routine message into a potential path to financial ruin.
Unlike earlier, generic fraud attempts, this scam is disturbingly precise. Victims receive WhatsApp messages that include their actual vehicle registration number, a fabricated challan reference, and an attached APK file described as an “official receipt” or “challan document.” Once installed, the file covertly takes control of the phone, harvesting banking credentials, intercepting OTPs, and granting remote access to the attackers.
A recent case involving Nagpur resident Pranay Mahajan underscores how narrowly disaster can be avoided. Around 12.40 pm, Mahajan received a WhatsApp message claiming he had been fined ₹2,000 for a traffic violation. The message appeared credible: the vehicle number was correct, the language formal, and the sender’s display picture featured what looked like a police insignia. However, Mahajan became suspicious. His vehicle had been parked outside his residence all day, a fact he confirmed using CCTV footage. Realising the alleged offence could not have occurred, he avoided opening the attached APK file. Cyber experts say that decision alone likely saved his phone from malware capable of emptying his bank accounts within minutes.
Police sources confirm these scams are not random. Fraudsters are believed to be exploiting leaked databases, stolen FASTag information, or compromised vehicle-registration records to personalise messages and lower suspicion. WhatsApp profile photos displaying police logos or government symbols further reinforce the illusion of authenticity.
Behind these messages is an organised digital syndicate. In a recent crackdown, Nagpur City Police dismantled a cybercrime network operating nearly 80 mule bank accounts and routing transactions worth more than ₹21 crore. Investigators say the group relied on the same APK-based malware delivery methods to carry out financial fraud, steal OTPs, run illegal online gaming rackets, and lure job seekers with fake business offers.
Alarmingly, cyber investigators have identified at least six victims in Nagpur alone who were targeted using the same data-theft pattern within a short span, pointing to coordinated and scalable operations rather than isolated incidents.
Officials stress that no government department or police agency sends challans, payment links, or APK files via WhatsApp. Legitimate traffic fines can only be checked through authorised portals such as Parivahan or official traffic police websites. Any message demanding immediate payment through WhatsApp should be treated as fraudulent.
Cybercrime experts warn that once a malicious APK is installed, the window for recovery is extremely narrow. “Time is critical,” a senior official said. “If reported quickly, we can freeze accounts, stop fund transfers, and in some cases even reverse transactions, but delays drastically reduce the chances.”
Citizens are advised to block and report suspicious numbers immediately. If a link is clicked or an APK installed, victims must contact the National Cyber Crime Helpline 1930 without delay and register a complaint. In cyber fraud, minutes—not days—often decide the outcome.
As scams grow more sophisticated, authorities say awareness remains the strongest defence. In the age of personalised cybercrime, even a familiar vehicle number can become a trap.
👉 Click here to read the latest Gujarat news on TheLiveAhmedabad.com