In 2026, cybercriminals have refined a dangerous new tactic, with Nagpur emerging as a major hotspot. Authorities have uncovered a surge in highly targeted WhatsApp scams where fraudsters impersonate traffic police officials and send fake e-challans containing malicious APK files. These deceptive messages transform routine notifications into gateways for financial theft.Unlike generic scams of the past, this scheme is alarmingly precise. Victims receive WhatsApp messages referencing their actual vehicle registration numbers, along with fabricated challan references and an attached APK file labeled as an “official receipt” or “challan document.” If installed, the malware covertly takes control of the victim’s phone, stealing banking credentials, intercepting OTPs, and granting remote access to the attackers.A recent incident involving Nagpur resident Pranay Mahajan highlights how close disaster can come.
At 12:40 pm, Mahajan received a convincing WhatsApp message claiming a ₹2,000 fine for a traffic violation. The message appeared authentic, featuring his correct vehicle number, formal language, and a sender profile photo resembling a police insignia. However, Mahajan’s vehicle had been parked outside his home all day, confirmed by CCTV footage, prompting him to avoid opening the suspicious APK file. Cyber experts affirm that this cautious decision likely prevented malware capable of draining his bank accounts within minutes.Police sources reveal these scams are not random but carefully orchestrated, with fraudsters exploiting leaked databases, stolen FASTag data, and compromised vehicle registration records to personalise messages and reduce suspicion. The use of WhatsApp profiles displaying police logos or government symbols further adds to the illusion of legitimacy.Behind these attacks is an organised cyber syndicate. In a recent bust,
Nagpur City Police dismantled a network operating nearly 80 mule bank accounts and processing transactions exceeding ₹21 crore. The group used similar APK-based malware tactics for financial fraud, OTP theft, illegal online gaming operations, and deceiving job seekers with fake business offers.Cyber investigators have identified at least six Nagpur victims targeted by the same data-theft pattern in a short period, indicating coordinated, scalable operations rather than isolated cases.Officials emphasize that no government or police department sends challans, payment requests, or APK files via WhatsApp. Legitimate traffic fines can only be verified through authorised portals like Parivahan or official traffic police websites. Any WhatsApp message demanding immediate payment should be treated as fraudulent and reported.
