In a significant breakthrough, Bihar Police have uncovered a sophisticated cybercrime operation in the Purnia district where criminals exploited Aadhaar biometrics data to siphon off money from victims’ bank accounts without the need for OTPs or phone calls.
Modus Operandi of the Fraud
The cybercriminals accessed the victim’s Aadhaar biometric data through government land records, highlighting a new and alarming method of fraud. During a press conference, the Bihar Police explained that the criminals hacked into the government database to retrieve land documents dated June 25, 2024. These documents contained the victim’s Aadhaar details and fingerprints.
Using this information, the perpetrators cloned the victim’s thumb impression and used the Aadhaar Enabled Payment System (AePS) to withdraw money from the victim’s bank account. Since AePS does not require an OTP for transactions, the criminals easily bypassed traditional security measures.
Arrests and Ongoing Investigation
The Bihar Police have arrested eight individuals linked to the cybercrime. This group has been regularly defrauding people by exploiting Aadhaar biometrics without using OTPs or fraudulent phone calls. The investigation is ongoing, with authorities working to apprehend additional suspects involved in the scam.
No OTP,
No phone call,
No clue,
But money was stolen from the bank account…
(with the help of Registry papers)
Case is of Purnia Bihar . #CyberFraud pic.twitter.com/jeVGqhMWmV
— Pankaj Nain IPS (@ipspankajnain) July 11, 2024
Protecting Yourself from AePS Fraud
Aadhaar cardholders can perform transactions using the Aadhaar-enabled Payment System (AePS), which is beneficial in areas with poor internet connectivity. However, the use of fingerprints for verification presents a significant risk as they can be unlawfully obtained and replicated by fraudsters.
To safeguard against AePS fraud, individuals should:
- Conceal their Aadhaar number and use a virtual ID for online transactions, which can be generated on the UIDAI website.
- Ensure their phone number and email address are linked to their Aadhaar to receive alerts for any suspicious activity.
- Report any instances of AePS fraud on the National Cybercrime Reporting Portal.
The recent case in Bihar serves as a stark reminder of the vulnerabilities in the current system and the need for enhanced security measures to protect personal data. Authorities are urging the public to stay vigilant and take necessary precautions to secure their Aadhaar information.
For more updates and information on cybercrime and how to protect yourself, stay tuned to Magadh Today.