A Delhi resident lost several lakhs from his bank account in a shocking case of cyber fraud executed without any OTP or password compromise, exposing a dangerous new trend in digital theft. The victim discovered multiple unauthorized transactions despite never sharing his credentials, raising alarms about advanced fraud techniques now targeting Indian consumers.
According to officials, the attackers may have exploited vulnerabilities in device access, SIM-linking, or banking app authorization workflows. Cyber experts warn that criminals are increasingly using methods such as remote access tools (RATs), session hijacking, malware injections, and token theft to bypass OTP-based security altogether. In some cases, fraudsters gain control of a phone’s notification layer or manipulate backend authentication systems.
The victim reported the incident to Delhi Police’s Cyber Cell, which has launched an investigation to trace the digital trail of the transactions. Banks have also been alerted to examine logs and identify potential system-level loopholes that might have enabled the breach.
This incident underscores the growing sophistication of cybercriminals who no longer rely solely on phishing or social engineering. Authorities urge users to avoid installing unknown apps, disable screen-sharing permissions, secure devices with strong authentication, and monitor banking activity regularly.
The case adds to a rising number of OTP-free frauds across India, signaling an urgent need for banks, telecom operators, and regulators to strengthen multi-layered security and adopt behavioral analytics to protect consumers from next-generation digital theft.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
