The con involves sending fake traffic fine messages to mobile phones, often claiming that the user has unpaid challans. The messages include a link to an APK (Android application package) file, which victims are urged to download to view or pay their fines.

Once installed, the malicious app takes full control of the victim’s phone, granting cybercriminals access to sensitive personal data, including bank account credentials, OTPs, and SMS messages.

In Belagavi, several drivers have reported receiving such deceptive messages. In one case, a local driver lost Rs 40,000 after downloading an app he believed was from the traffic police. “The message looked official. It said I had pending fines and needed to download the app to pay. I had no idea it would give someone control over my phone,” he said.

A resident of Shivamogga recently lost Rs 1.5 lac from two separate bank accounts after downloading a similar fake app to verify his traffic challans. “The app seemed genuine. I just wanted to check if any fines were pending. Minutes later, my bank accounts were emptied,” he said.

According to preliminary investigations, these scams are carefully orchestrated to mimic official communications. Fraudsters use names and formats similar to legitimate government sources to trick victims into lowering their guard.

How the scam works

Fraudsters craft messages that closely resemble those from the police or transport authorities. These messages often threaten legal action or arrest if fines are not paid immediately, creating a false sense of urgency. Victims, unaware of the danger, install the linked app, which secretly grants remote access to the phone’s data.

Once inside, the criminals use the information to carry out unauthorised transactions, often draining bank accounts within minutes. Some victims realise the fraud only after seeing transaction alerts or being locked out of their mobile banking apps.

Safety guidelines issued by authorities

To protect the public, authorities and cybercrime experts have issued several guidelines:

• Verify the sender: Genuine e-challan SMS messages come from official government sender IDs like VK-VAAHAN, not personal phone numbers.

• Inspect web links carefully: Official sites end with .gov.in. Scammers often use similar-looking domains such as echallanparivahan.in to confuse users.

• Avoid panic responses: Real challans do not come with threats of immediate arrest. They include proper documentation and a clear payment deadline.

• Check for vehicle details: Authentic messages include specific information about your vehicle and the alleged offence. Fake messages often lack these details.

• Use only authorised payment methods: Legitimate traffic fines must be paid through official government gateways. Never transfer money to personal accounts or through QR codes.

• Do not download apps via SMS links: Applications sent via text messages or WhatsApp links are highly suspect. Only download apps from official app stores like Google Play or Apple App Store.

Police across the state, including in Basaveshwaranagar and Belagavi, have registered multiple cases of cyber fraud and are continuing investigations. Cybercrime cells have also been alerted and are working to trace the origin of these attacks.

Officials have urged citizens to remain vigilant and immediately report any suspicious messages or financial irregularities. As the scam continues to grow in scale and sophistication, public awareness and digital caution are essential in preventing further losses.

With ordinary citizens now being targeted and lacs already lost, the fake e-challan scam stands as a stark reminder of the evolving tactics used by cybercriminals — and the urgent need for stronger digital literacy.