Cyber Security Bureau (TGCSB) has issued a warning about a rising threat of “Greeting Scams”

As India gears up to welcome 2026, the Telangana Cyber Security Bureau (TGCSB) has issued a warning about a rising threat of “Greeting Scams” circulating on messaging platforms like WhatsApp and Telegram. These scams exploit festive trust, luring users into clicking links that promise personalized greetings, New Year gifts, or SBI year-end rewards.

Unlike typical frauds, these attacks do not rely on fear or greed but exploit the goodwill of users. Often, the messages appear to come from a trusted contact whose account has already been compromised, making the scam appear legitimate.

How the Scam Works

When a user clicks on the link, instead of a festive animation, a malicious APK (Android Package Kit) file is installed silently on the device. Once activated, this malware gives hackers near-total control over the victim’s digital life, including access to contacts, photo galleries, microphones, and messages. It can even bypass two-factor authentication for banking apps.

Hackers then hijack the victim’s WhatsApp account to forward the malicious link to all contacts, perpetuating the cycle. Because these links are often shared in family or office groups, users may let their guard down, unaware that they are effectively giving attackers access to sensitive information.

Shikha Goel, head of TGCSB, said, “People believe they are opening a greeting card, but in reality, they are handing over the keys to their bank account.”

TGCSB Guidelines to Stay Safe

To avoid falling victim, TGCSB advises users to:

Avoid clicking unknown links, even if sent by friends or family.

Block and avoid installing APK files from private messages.

Enable two-step verification on messaging apps to prevent account hijacking.

Update apps only from official stores such as Google Play Store or Apple App Store.

Act immediately if a suspicious link is clicked: disconnect from the internet, uninstall the app, and notify your bank.

Victims are encouraged to report cybercrime within the first hour, as early reporting improves the chances of freezing compromised funds. Complaints can be registered via 1930. The TGCSB reminds citizens to remain vigilant and practice digital hygiene to ensure a safe and secure start to the New Year.

In late December 2025, the Telangana Cyber Security Bureau (TGCSB) and Hyderabad Police issued an urgent alert regarding a surge in "New Year Greeting" scams circulating on WhatsApp and Telegram. Scammers are exploiting festive goodwill to hijack smartphones and drain bank accounts.

How the Scam Works

The Bait: Users receive messages offering "personalized New Year greetings," "digital gifts," or rewards like "SBI year-end rewards".

Trusted Sources: Messages often appear to come from known contacts whose accounts have already been compromised, lowering the recipient's guard.

The Trap: Clicking the link prompts the silent installation of a malicious APK (Android Package Kit) file disguised as a greeting app.

Total Control: Once installed, the malware can access photo galleries, contacts, and microphones, and even read incoming SMS messages to bypass two-factor authentication (OTPs) for banking transactions.

Safety Guidelines from Telangana Police

Avoid Unknown Links: Do not click on links that require you to install or update an application just to view a greeting.

Verify with Senders: If a friend sends a suspicious link, verify it through a separate call or text before clicking.

Stick to Official Content: Use plain text, official stickers, images, or videos already inside the messaging app rather than external links.

Enable Security: Activate WhatsApp's two-step verification and only download apps from the Google Play Store.

Immediate Action: If you click a suspicious link, disconnect from the internet immediately, uninstall unknown apps, and notify your bank to block transactions.

By Advik Gupta