fake-e-challan-scam-spreads-via-hacked-phones:over-a-dozen-cops’-phones-hacked,-scammers-push-apk-links-through-realistic-traffic-violation-messages

Indore has witnessed a disturbing new form of cyber fraud in which mobile phones of police personnel were hacked first, and the same compromised numbers are now being used to target the general public. More than a dozen police officers posted in Chandan Nagar, Azad Nagar and Lasudia police station areas have reported that their mobile phones were compromised, triggering alarm within the police department itself. Cyber criminals are now sending fake e-challan messages from these hacked police numbers, making the scam appear authentic and increasing the chances of citizens falling into the trap. How the scam message looks The fraudulent message claims that a traffic violation has been recorded for jumping a red signal. It mentions a challan number, fine amount of Rs1,000, date and time, and warns that legal action may follow. Victims are asked to download an APK file named ‘E challan.apk’ to view photo or video evidence and make the payment. The format, language and timing of the message closely resemble genuine traffic challan alerts, which is why many recipients do not immediately suspect fraud. One click, full control lost Indore Crime Branch officials say that the moment the APK file is downloaded and installed, the mobile phone is completely compromised. Once a phone is hacked, the fraudsters use the same device to send identical fake messages to all contacts saved in the phone, allowing the scam to spread rapidly like a chain reaction. Police officers became unwitting carriers What makes the case serious is that police personnel themselves were the first victims. After their phones were hacked, cyber criminals began using their mobile numbers to send fake challan messages to citizens. Seeing a message coming from a known or official-looking number, many people trust it and proceed to download the file. The cyber cell is now investigating how hackers initially breached police mobiles, whether spyware was used earlier, and if the operation is linked to an organised interstate cyber fraud network. Cyber cell probe underway Technical teams are tracing the digital trail of the APK files, including server locations and payment routes. Police are also checking whether similar complaints have surfaced in other cities and whether the same malware is being circulated under different names. Police warning to citizens Rajesh Dandotiya, Additional DCP, Crime Branch, said: Public urged to report, not forward Police have appealed to citizens not to forward such messages, even as warnings, as it helps scammers widen their reach. Anyone receiving suspicious challan messages is advised to report them to the cyber cell so that the spread of the malware can be contained. The case serves as a stark reminder that even trusted-looking messages can be dangerous, and digital caution remains the strongest defence against evolving cyber threats.