Cyber fraudsters are allegedly targeting Mahanagar Gas Limited (MGL) customers through fake gas bill warnings, malicious APK files, and call forwarding scams designed to steal banking information and empty victims’ accounts.
Authorities and cybersecurity experts have warned that the scam is spreading rapidly across Maharashtra and Karnataka, with fraudsters using fear of gas disconnection to pressure users into taking immediate action.
According to reports, victims receive SMS messages or WhatsApp calls claiming their gas connection will be disconnected due to unpaid bills unless payment is made immediately. The scammers allegedly pose as MGL customer care representatives to create panic and rush victims into responding.
Users are then reportedly sent links to download APK files disguised as official Mahanagar Gas applications. Cybersecurity experts warned that these APK files are malicious Android installation packages capable of giving fraudsters remote access to mobile devices.
Investigators said that once installed, the fake apps may allow cybercriminals to access banking applications, passwords, OTPs, and other sensitive personal data stored on the device.
In several cases, victims were also allegedly asked to dial specific codes under the pretext of customer verification or gas bill activation. Experts warned that these codes can enable call and SMS forwarding services, allowing fraudsters to intercept OTPs and banking alerts without the victim’s knowledge.
Officials said the combination of remote device access and OTP interception enables rapid unauthorized banking transactions.
Reports indicated that more than 100 people were allegedly targeted within 30 days, with reported losses crossing ₹2.7 crore in Mumbai alone. Victims reportedly included senior citizens, teachers, businessmen, and domestic workers across Maharashtra and Karnataka.
In one case, a 60-year-old resident from Thane allegedly lost more than ₹3.1 lakh after installing a malicious APK file sent by scammers posing as Mahanagar Gas officials.
Cybercrime authorities have advised users not to install APK files received through SMS, WhatsApp, or unknown links. Officials also stressed that genuine Mahanagar Gas services do not require unofficial app downloads for bill payments or verification.
Users have been urged not to share OTPs, banking details, or personal information through calls or messages and to report suspicious activity through official cybercrime channels.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream LinkedIn | The Mainstream Facebook | The Mainstream Youtube | The Mainstream Twitter
About us:
The Mainstream is a premier platform delivering the latest updates and informed perspectives across the technology business and cyber landscape. Built on research-driven, thought leadership and original intellectual property, The Mainstream also curates summits & conferences that convene decision makers to explore how technology reshapes industries and leadership. With a growing presence in India and globally across the Middle East, Africa, ASEAN, the USA, the UK and Australia, The Mainstream carries a vision to bring the latest happenings and insights to 8.2 billion people and to place technology at the centre of conversation for leaders navigating the future.