A new type of fraud is on the rise – UPI App Cyber Fraud. Cyber criminals are now targeting UPI applications with malware. Malware is malicious software designed to disrupt, damage, or gain unauthorized access to a system. When installed on a user’s device, it can steal personal information, compromise financial details, and even damage device functionality.

The method followed by the fraudsters: Be aware of warning signs such as apps requesting unnecessary permissions, like access to contacts or messages, or apps developed by unfamiliar developers. These can be early indicators of potential threats.

1. 1. Cybercriminals create fake apps that secretly send important messages intended for your UPI registration to themselves, rather than to your bank. These apps act as intermediaries, capturing the messages your bank sends to link your phone to your UPI account. Once they have these messages, the criminals can access your account and misuse it. You may notice that you are not receiving the expected OTPs (One-Time Passwords) or may see unexpected registration prompts from your bank, which are indicators that your messages could be intercepted. Be alert to such anomalies, as they suggest unauthorised access.
   2. Fraudsters send links to malicious ‘APK’ files to potential victims through WhatsApp. APK stands for Android Package Kit, a file format used by the Android operating system for distributing and installing mobile apps. Installing APKs from unknown sources can be particularly dangerous, as these files may contain malware or other malicious software. Subsequently, a UPI application registration process is initiated by the fraudster.

Stay alert and avoid installing any suspicious apps on your phone, especially from untrusted sources to save yourself from UPI app cyber fraud. Always follow these security best practices:

1. Update your mobile device with the latest operating system and security patches
2. Install applications only from official and trusted sources (like Google Play Store and Apple App Store)
3. Install antivirus/security software from a trusted provider and update it regularly.
4. Verify the permissions of the application before allowing access
5. Never click on suspicious links in emails or messages
6. Avoid downloading/installing unknown applications
7. Never share your confidential information, such as OTP, Password, PIN, and card number, with anyone.

If you come across such UPI App Cyber Frauds, report them right away to the National Cyber Crime portal at cybercrime.gov.in or call the helpline at 1930. Before reporting, ensure that you collect all relevant information, including screenshots, messages received, details about any suspicious apps, and any other evidence of fraud. This will assist authorities in their investigation and help them address the issue more effectively.