|
Email password Hacking
Mule Recruitment fraud
Fraud by SMS N CASH scheme of ICICI
Source
Code theft
Internet
Lottery Fraud
Internet
Banking Fraud
Case Study -01 Email password Hacking-
One day a
lady come to cyber cell
office and reported that
she and her brothers
e-mail ID’S had been
hacked by someone she
suspected him to be her
husband. The lady had
already lodged a case
against him for dowry
and was pending for
trial in Bhopal court .
The suspect had hacked
lady’s and her brother
e-mail ID account and
copied all the
information to his
e-mail and produced
selected e-mails to
claim that . she was
happy with him and case
of dowry is a false one
.
To malign the image of
her brother the suspect
sent a copy of FIR
lodged against him at
police station Habibganj.
This indicated that the
husband of the lady was
behind the whole affair
but police had not any
evidence against him.
Cyber cell started
enquiry by an order of
IGP and obtained the
login logs from
rediff.com .The logs
indicated that the email
IDs password were
changed and anonymous
emails were sent from
the house of lady’s
husband and sent from
his .
Cyber cell registered a
case under section 66 IT
act and submitted
Challan has been filed
against the suspect and
trial is over.
Court has hold the
conviction against the
suspect Sabrish Pillai
but found that the
matter came before the
court as Sabrish was
having family dispute
with his wife and the,
act of hacking was not
against the society at
large, Hence let him
free after warning.
^
GoTo Top
Case Study -02 Mule Recruitment fraud-
A lady name seema came
to cyber cell with a
complaint As per the
complaint she registered
her self into
naukari.com for job.
After registration she
received a call from a
lady named Venus Michael
who was supposed to be
from reputed NGO of
United Kingdom Action
aid foundation, for the
interviews. Seema was
very happy to hear that.
Her interview was taken
over telephone and was
offend job letter
through email. Seema
earlier worked with NGOs
and hence was excited to
work with reputed Action
aid foundation. Another
day the venus called
seema to start an
current account in AXIS
bank or HDFC bank with
current account limit
upto Rs. 25,000/- . she
agreed and did the same.
After opening the
account seema supplied
the relevant details of
account to the Venus, as
she was told that the
donor will deposit Rs.
1.90 lakh in her account
and she will have to
withdraw Rs.1.8 Lakh and
will have to deposit the
same in six different
accounts and rest amount
will be her earning. It
happened the same way as
told by the Venus. Seema
saw her account showing
credit of Rs.1.90 Lakh.
Next day seema
approached all bank to
withdraw money and
deposit the same in to
six different account
but due to some
technical reasons see
could not withdraw the
money from her HDFC
account having credit of
Rs 1.90 lakh. Seema was
in belief that she has
already received the
amount hence deposited
her own money in six
different account which
were from uttrakhand,
delhi and north east.
Next day seema went
again bank to withdraw
money but see was
shocked to hear that her
account has been blocked
by lucknow police and an
FIR has already been
lodged at lucknow
against her and she was
prime suspect in that.
On receiving complaint
Cyber cell started
enquiry from the emails
received by seema. The
full header analysis
revealed ip address and
the same was sent to
mobile operator which
ended to a mobile no
number. The name and
address attached to the
mobile number were found
to be false which were
supposed to be from
Mumbai. Cyber cell
collected the login logs
of the internet banking
account of Mr Manish and
found that money was
hacked and transferred
from Nigerian IP.
Subsequently Cyber cell
registered a FIR under
section 66 IT act ,
420/34 IPC
Name and address of the
mobile used by lady
venues Michael were in
the name of Nigerian
franklin mbonu. But
address was not
reachable as he shifted
new address. After that
cyber cell started
analyzing the logs of
venues and identified
the numbers to whom
calling was great and in
odd hours . Then Cyber
cell had five number to
be analyzed. After
months of analysis one
suspect was traced.
Cyber cell had the
address of suspect the
house was raided by
cyber cell at delhi and
seized the suspected 6
mobile, laptop but
accused could not be
caught. LOC has been
issued against suspect.
During investigations the culprits
were identified to be Onyekachi Adiba
and her lady copartner. Adiba's house
at delhi was raided and the mobiles and
laptop involved in the
fraud was recovered from his house but he was
able to escape. After analysis of adiba's mobile
cybercell found the person named EMMA to be suspect
providing bank details to him. Documents seized also show
his relation with him. Analysis of CDR revealed that
EMMA is superior in hierachy of internet job fraud.
Sate cybercell Bhopal has arrested EMMA and lalhamangaihi
from their home at arjun nagar, delhi. Several bank details, ATM/DEBIT cards
Fake company letters were recovered from him.
At present EMMA is in BHOPAL CENTRAL JAIL is facing trial. Her
wife lalhamangaihi coaccused in the crime
has been given bail due to last stage of pregnancy.
Court has issued permanent arrest warrants against the accused who are
absconding. Cybercell is trying to identify the properties owned by the suspects
so that proceeds of the frauds can be recovered from them.
be nabbed.
In a historic judgement
the court has ordered
EMMA and lalhamangaihi
two years of
imprisionment and fine
of Rs two thousands
each.
^
GoTo Top
Case Study-03 -Fraud by SMS N CASH scheme of ICICI :
ICICI had recently
launched a scheme called
SMS N Cash scheme as per
scheme many a time we
want to send the money
to our dear ones who do
not have any account or
ATM card but has go to
mobile.
The customer had to
register his own mobile
number and at most two
beneficiary mobile
number under the scheme.
The customer it wanted
to transfer money from
his account. He can do
it from internet
banking. During transfer
six digit code was sent
to beneficiary and four
digit code to customer.
The beneficiary could
now contact the customer
to receive four digit
code and to gather with
his code he could
generate 10 digit code
and could withdraw money
from ICICI ATM.
Banks fraud detection
officer shri vijay gupta
reported that an
anonymous person had
hacked customer’s
account and transferred
7 lac to another dormant
and subsequently
withdrew Rs.3 Lac
through SMS N CASH
scheme.
Cyber cell registered a
case under section
420/34 IPC and 66 IT act
and started
investigation. The
suspect obtained three
SIM having insufficient
address and invalid
names. The suspect
pretending to be
customer care from ICICI,
called various traders
having current account
with high limits and
asked them to provide
personal details and
password. Mistakenly the
customers provided the
same.
As password was with the
suspect he took control
of internet banking
account of trader and
transferred the amount
worth 7 lac to another
account in which SMS N
CASH scheme was
operational. With help
of three mobile having
SIM with unknown address
the suspect withdrew
amount 3 lac from ICICI
ATMs . The suspects took
precaution to block all
cameras.
Cyber cell analyzed all
the call details and the
pattern of activity and
finally got the actual
identity of the
fraudster. He was found out
to be Sachin Khampariya Who has
been arrested by State Cybercell team from
Katni, a district of Madhya Pradesh.
As per accused narration " I picked up a directory
and identified the traders and the
persons expected to have good balance. Then
i called them pretending to be
customer care representative of ICICI and
collected important iformation like
name,Parent's name, address, internet banking
passwords, transection passwords etc. In this
way i collected information from current account holder
Mr Pokhanlal sahu and savings account holder
Surekha Jain. As SMS N CASH scheme
was available for saving account holder only
I transferred the amount 7.00 lac from
current account of Mr Pokhanlal sahu to savings account
of Mrs surekha jain. Later on i added my three
mobile numbers having fake addresses and withdrawn
the amount from ATM after having received SMS on the mobile
as per SMS N CASH scheme.
amount through SMS N CASH scheme
MP cyber
police after preliminary
enquiry registered the
case and thorough
investigation was made.
During investigation it
was apprehended that the
suspect made may be two
in numbers. As the money
was being withdrawn form
the location different
from the tower location
of mobile. The suspect
took all precautions to
ovet the pin hole of ATM
camera or entered ATM
after covering his face.
The suspect never made
calls to his known
friends or the relatives
from the mobile used for
cheating. The CDR of the
suspected person was
analysed and every
contact was interrogated
to obtain the clue.
During the same the name
of the suspected person
came out to Sachin
Khampariya who was
continously traced and
finally got arrested in
katani with all the
three suspected mobile
used for cheating
through SMS N CASH
scheme of the ICICI
bank. MP cyber police
also seized two diaries
of the suspect which
clearly stated the modus
operandi of the crime.
Sachin khamapariya is
now behind
the bars and trial is in
progress.
^GoTo
Top
Case Study
-04
--Source Code theft :
One day a young
Software
engineer came to
State Cyber
police office
and complained
that his web
portal has been
copied and being
used in the
other brand
name. Cyber
police asked him
to demonstrate
the same. The
engineer opened
his portal and
the suspected
portal and
changed one of
the source code
of his image in
the portal. We
could easily see
that the images
on the suspected
portal also
changed.
After verifying
several
similarities
Cyber police
found the claims
of the engineer
from Bhopal to
be true.
After
preliminary
investigation
a FIR has been
lodged against
the owner of the
suspected portal
for copying the
source code of
the portal and
using the same
after making
some changes for
his use.
During
investigation
the details
about the site
owner were
obtained from
the domain
registry sites
and profile of
the suspect has
been built up.
The suspect has
been found to be
Australian of
indian origin.
^GoTo
Top
Case Study
-05 --Internet Lottery
Fraud
:
MP Cyber police
has investigated
several case of
cheating through
Internet lottery
offer which is
commonly known
as Nigerian 419
scam. In this
kind of cheating
the culprits
used to send
bulk emails,
bulk SMS to
millions of
users using
software,
stating that the
receiver has won
lottery worth
thousands of
pounds or
dollars which
comes out to be
crores of Indian
rupees, in a
lucky draw. They
used to create
fake lottery
winning
certificate
using logo and
text from
original
website, which
seems to be
original at a
glance. This
kind of sending
bulk emails or
SMS is an act of
commonly known
as PHISHING
attack. Those
who are lured by
such offer often
tempted to
contact them.
The culprits
then ask the
target to fill a
form and thus
receives all the
personal
information of
the target and
asks him to
deposit token
money in various
names to earn
the lottery
prize. The
target who is
hoping to earn
huge amount of
money finds
these charges to
be minimal. The
culprit asks the
target to
deposit money in
the name yellow
tag, custom
clerance UN anti
terrorism
certificate, RBI
charges or any
other name they
feel it to
suitable to
convince the
target. The
culprits ask the
target to
deposit in
various bank
accounts and
once the money
is deposited by
the target it is
withdrawn same
day by the
suspect.
After loosing
lacs of amount
people come to
know that they
are being
cheated. In this
kind of cheating
the contact
number are
usually taken in
the fake names
or in the other
indian guys
name, account
are being opened
in the fake
names or
acquired on the
basis of
commission by
fooling the
account holders.
Mp cyber police
has investigated
the case of
Internet lottery
fraud and
arrested
Nigerian
national
Godspower from
Meharauli Delhi
with the
suspected mobile
used for
communication,
one laptop,
printer and box
used for black
dollar scam.
Mp cyber
police has
investigated the
case of Internet
lottery fraud
Crime no 07/09
420,468,34 IPC
and crime no
05/10 420,468,34
aIPC and
arrested
Nigerian
national Idiogbe
Joseph from
Mumbai with the
suspected mobile
used for
communication,
laptop, fake
Income tax
certificate and
seals.
Apart from the
above MPCP
is investigating
two more such
cases in which
suspects are
being monitored
and efforts are
being made to
arrest them.
I
^GoTo
Top
Case Study
-06
--Internet Banking Fraud
:
Kotak
mahindra bank and Poonam
Gulati reported to IGP
MP Cyber Police that an
amount worth Rs 17 lacs
has been illegally
transferred to account
in the name of Gourav
shukla from account of
Poonam Gulati through
internet banking and
susequently withdrawn
from various ATMs. The
matter came to light
when Mrs poonam gulati
read her bank account
statement in the month
of July that amount
worth Rs 17 lac had been
transferred through
internet banking to some
new account which she
didn't know. She
enquired at the bank and
asked when she didn't
asked for internet
banking then how it can
be activated and
transfers could be made.
On
preliminary enquiry MP
Cyber police found that
it was an act of
cheating forgery and
fraud against the bank
and not the customers as
the customer never asked
for the activation of
Internet banking, Hence
a FIR was lodged in the
name of Kotak mahindra
Bank.
As per
complaint a fake account
was opened in the name
Gourav Shukla. For the
purpose of cheating the
suspect approached the
bank and submitted
forged document to add
mobile in the account of
Poonam Gulati. The bank
official matched only
PAN number but didn't
match the photocopies
with the original. After
getting registered the
mobile number in the
account of Poonam Gulati
the suspect requested to
add Internet banking in
the account of Poonam
gulati. After getting
Internet banking
activated the suspect
made request forgot
password through
Internet banking. He
could obtain the same
partial on internet
window and partial on
registered mobile. The
suspect after getting
the internet banking
password transferred Rs
17 lacs , one lac each
per day from the account
of Poonam Gulati to
account of Gourav Shukla.
He withdrew money at the
rate of One lac per day
from the various ATMs of
State Bank of India
wearing helmet.
MP State
cyber police on receipt
of complaint analysed
the complaint to
ascertain the point from
where evidences can be
found out. Cyber police
got CDRs, IP Login logs
and found that suspect
entered Cyber cafe with
fake Name and address.
Cyber police analysed
the location based on
CDRs and tried to look
through Fake ID cards
and listed out the
suspect list. After
getting the profile of
suspects built up Cyber
police raided several
places and arrested
Rahul sharma, Reetesh
Choukse, Shyam Yadav and
Pramod Jaiswal.
Out of
these the master mind
was the Ex Kotak
employee Reetesh who
conspired with Rahul to
open a account in the
name of Fake ID card in
the name of Gourav
Shukla. The account was
opened with photo of
Shyam yadav. The fake id
was created by the cyber
cafe owner Pramod
Jaiswal and Rahul
withdrew the money from
ATMs wearing Helmet.
Cyber
police cracked the case
within seven days and
seized around Rs 15 lacs
which were deposited in
several accounts.
The
suspects are IN JUDICIAL
REMAND and challan is in
process of being filed.
Time Cycle of the CYBER
Theft
|
