Jamtara Police Bust Gang Using ChatGPT Malware and Fake APKs for Govt Scheme Fraud

The Jamtara Police, renowned for their efforts in combating cybercrime, have uncovered a new wave of sophisticated scams involving ChatGPT malware and fake APKs. A gang operating out of the notorious cybercrime hub of Jamtara, Jharkhand, was found to be using advanced AI tools and deceptive applications to defraud unsuspecting citizens under the guise of government schemes. This bust sheds light on the evolving nature of cybercrimes in India and the innovative strategies employed by law enforcement to combat these fraudulent schemes.

Dr. Ehtesham Waquarib (IPS), SP Jamtara, led a team resulting in the arrest of a criminal syndicate after a month-long chase. The gang created malicious APKs mimicking schemes like "PM Kisan Yojna" and banks like SBI, Canara and PNB etc. Central to their operation were fake APKs (Android Package Kits)—fraudulent mobile applications designed to mimic legitimate apps for government welfare schemes. The gang lured victims by advertising fake government schemes, promising subsidies, loans, or benefits under popular welfare programs like PM-Kisan Yojana and Ayushman Bharat.

Also Read: Indian Publishers Sue OpenAI Over ChatGPT’s Alleged Copyright Infringement

Victims were tricked into downloading these fake APKs, which were embedded with ChatGPT malware. This malware was engineered to steal sensitive information, such as banking credentials, Aadhaar details, and personal data, from the users' phones. By leveraging ChatGPT misuse, the gang created highly convincing phishing messages and scam websites that appeared authentic. AI-generated responses tailored to victims' queries further added to the scam's credibility, making it difficult for victims to detect foul play.

ChatGPT Misuse in Cybercrime

The use of ChatGPT malware highlights a growing trend of cybercriminals exploiting AI tools for illegal activities. The scammers leveraged ChatGPT’s advanced natural language processing to craft sophisticated phishing messages that mimicked official communication from government authorities. These AI-generated messages were free from grammatical errors and used formal, convincing language, which made them appear legitimate.

Moreover, the malware deployed through the fake APKs collected keystrokes, OTPs, and other sensitive data in real time, enabling the scammers to execute phishing attacks and unauthorized transactions. The gang even programmed the malware to disable antivirus software on infected devices, making detection harder.

Using advanced digital forensics, the police tracked the origin of the APK scams and identified servers hosting the malicious applications. They also monitored phishing websites and suspicious online transactions to pinpoint the gang’s activities. Several devices, including laptops, smartphones, and routers, were seized during raids, which provided crucial evidence of the use of ChatGPT malware in executing these crimes.  These APKs were also sold for ₹20,000-₹25,000 each to other cybercriminals.

The police also uncovered chat logs, fake government scheme advertisements, and money trail transactions that exposed the scale of the fraud. Initial investigations suggest that the gang defrauded thousands of victims, siphoning off crores of rupees in the process.  

Also Read: Cybercrime anticipated to reach $10 trillion next year