Key Takeaways
- A Bijnor man lost ₹31,000 instantly after clicking a fake wedding invitation link on WhatsApp.
- The malicious link installs malware that gives scammers full remote control of your phone.
- Police warn against downloading APK files from unknown numbers and sharing OTPs.
A Bijnor resident lost ₹31,000 in a sophisticated cyber fraud after clicking a WhatsApp link disguised as a wedding invitation. The incident highlights a dangerous new scam exploiting India’s ongoing wedding season to steal money and personal data.
How the Bijnor Wedding Invite Scam Unfolded
Dr Omprakash Chauhan from Dhampur, Bijnor district, clicked a wedding invitation link sent via WhatsApp. The moment he opened it, he completely lost control of his mobile phone. Simultaneously, ₹31,000 was deducted from his bank account, and all his personal information was transferred to an account identified as “Cyber Thakur.”
After realizing he had been scammed, Chauhan filed complaints with both his local police station and the Bijnor Cybercrime Police Station. An investigation into the matter is currently underway.
How the ‘APK File’ Scam Works
Cyber experts explain that these fraudulent invitations are often disguised as APK (Android Package Kit) files. When downloaded and opened, the malware immediately activates on the smartphone, giving fraudsters complete remote control. This grants them access to bank accounts, UPI apps, passwords, and all sensitive mobile data.
The scheme is particularly dangerous due to its self-propagation method. Once a phone is compromised, the same malicious wedding card link is automatically sent to the victim’s entire contact list, rapidly expanding the network of potential victims.
Police Warning and Safety Tips
Following multiple incidents, local police have issued a public warning. Dr Krishna Gopal, Assistant Superintendent of Police (ASP), City Bijnor, advised extreme caution before opening any link, file, or wedding invitation from unknown numbers.
Key safety measures include:
- Never download APK files shared by unknown contacts via WhatsApp or other messaging apps
- Never share One-Time Passwords (OTPs) with anyone
- Enable two-factor authentication (2FA) for banking and social accounts
- Scrutinize all digital invitations carefully before clicking
