Hackers Are Looting Indian Investors via Fake Apps, Telegram Scams, and UPI Fraud

A massive cybercrime operation is targeting Indian investors with fake stock and crypto schemes. Hackers are using Telegram groups, fake mobile apps, and even compromised college websites to trick users, steal financial data, and siphon off crores in hard-earned money. With losses already crossing ₹50 crore, it's clear this is not just a scam—it’s a full-scale cyberattack. 

  • Fraudulent investment apps are impersonating trusted names like Tesla and Binance to trap users
  • Telegram groups such as “BITCOIN MONEY EARNING” and “Wolf calls PAID Channel” are used to build fake trust

  • Victims are shown false UPI receipts and manipulated stock charts to lure them into making payments
  • Fake trading platforms like stockheaven[.]site block withdrawals and steal personal banking data
  • Malicious APKs are being spread via spoofed WhatsApp groups, masked as legit trading apps

  • Attackers used a real Indian engineering college website’s vulnerability to host fake tools
  • Malware in these apps hides malicious content using hidden WebView code to load phishing dashboards
  • UPI IDs such as alomwebtechnology@upi are used to collect funds and then vanish
  • The code connects to Chinese-controlled servers and includes Mandarin-language comments
  • Tactics like fake transaction logs and referral bonuses keep the scam going and expanding
  • Cyfirma researchers traced more than 15 such malicious apps in this campaign
  • Users’ bank details, UPI credentials, and personal data are being harvested for further attacks

This is not just a warning—it’s a wake-up call for every Indian investor. The blend of social engineering and malware is making these scams dangerously effective. At Net Protector Cyber Security, we strongly urge users to never trust unsolicited investment links, especially from Telegram or WhatsApp. Always verify platforms via official sources like SEBI, avoid unknown APKs, and keep your mobile security updated. Digital wealth needs digital vigilance—don’t let cybercriminals turn your investment dreams into a nightmare.