WhatsApp Scam in India: Man Loses Rs 9 Lakh After Clicking on an Image – Cybercrime Rising Through Steganography

Jabalpur Incident Sparks Nationwide Cybersecurity Alert

A shocking case from Jabalpur, India has put WhatsApp users on high alert. A seemingly harmless image shared through the messaging app led to a man losing over ₹9 lakh (approx. $10,800) in a sophisticated cyber scam. Authorities have traced the origins of this incident to a growing trend of cyber attacks using embedded malware, specifically leveraging a technique known as steganography.

How the WhatsApp Image Scam Unfolded

The victim received an image from an unknown number on WhatsApp and clicked on it, thinking it was a regular photo. Within minutes, his bank account was wiped clean. The attackers used malware hidden inside the image to remotely access his smartphone and extract sensitive banking information, including passwords and OTPs. This allowed them to transfer funds without the victim’s knowledge.

Steganography: The Hidden Threat in Images

This scam was executed using steganography—a method in which malicious code is embedded inside innocent-looking files, especially images. Unlike traditional phishing attacks that require users to enter personal details, steganography-based attacks silently infect devices upon opening the file. Once inside, the malware can extract credentials, monitor activity, and initiate unauthorized transactions.

Cybersecurity experts warn that this technique is difficult to detect without advanced security tools. Traditional antivirus software may not recognize such embedded threats unless they are regularly updated.

Police Investigate, Warn Public of Widespread Risk

The case is under investigation by the cyber cell of Madhya Pradesh, with early reports confirming that the cybercriminals are operating from Jharkhand. They reportedly used remote-access tools to control the victim’s phone. The authorities have emphasized the importance of public awareness, advising users never to open unsolicited media files and to disable WhatsApp’s auto-download feature immediately.

Protecting Yourself Against Cyber Fraud

Citizens are urged to take preventive measures such as:

• Avoid opening files from unknown numbers.

• Keep smartphone operating systems and apps updated.

• Install trusted antivirus software.

• Turn off auto-download settings in WhatsApp.

In case of cyber fraud, victims should promptly report incidents at the National Cyber Crime Reporting Portal or dial the 1930 cybercrime helpline. Early reporting significantly increases the chance of recovering lost funds.