Online scammers target desperate loan seekers using online fraud

Fraud
(Image credit: Shutterstock / Sapann Design)

Hackers are stealing money from gullible victims looking for a flash loan and moving it into China, experts have warned.

A new report from cybersecurity experts CloudSEK has suggested such activity means there is a need for greater international cooperation in order to stop this type of fraud.

As per the report, hackers (which CloudSEK believes are Chinese) have created over four dozen Android apps, impersonating popular Indian banks. These apps are hosted on different third-party app repositories and standalone websites. Then, they are “aggressively” advertised through social media. The advertisements promise quick and substantial loans, and easy repayments.

Thousands of dollars stolen

Gullible consumers who fall for the trick are then asked to share personal information, such as their name, address, phone number, and bank account information. Furthermore, they are asked to pay a processing fee, usually 5% of the loan they are applying for. When that happens, the app goes dark, the loan never makes it to the victim’s bank account, and the money is gone.

Apparently, the hackers managed to steal more than $44,000 this way. The worst part is that the money is quickly moved across the border and into China, where the lack of proper regulatory scrutiny allows the attackers to hide their tracks effectively. This is made possible with the use of various payment gateways, not just Chinese, but also Indonesian, Malaysian, South African, Mexican, Brazilian, Turkish, Vietnamese, Philippino, and Colombian. 

"A notable trend we've observed is scammers exploiting Chinese payment gateways due to their relative ease of use and limited regulatory scrutiny. These gateways offer a convenient bridge to funnel funds outside India, leveraging sophisticated techniques that blur jurisdictional lines, making it challenging to track and intercept the money trail,” said Sparsh Kulshrestha, Senior Security Analyst at CloudSEK. 

“This enables scammers to sidestep the legal and financial roadblocks, making it imperative for authorities to enhance cooperation and adopt advanced measures to counter this sophisticated threat."

More from TechRadar Pro

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
mobile phone
Popular Android financial help app is actually dangerous malware
Someone holding a passport with two boarding passes inside it
Top digital loan firm security slip-up puts data of 36 million users at risk
Malware worm
Coordinated global mobile malware campaign targets banking apps and cryptocurrency platforms
Google Pixel Scam Detection warning
Common internet scams and how to avoid them
An illustration of a hooded hacker with an obscured face holding a large fingerprint against a red background.
ID theft – what happens when someone steals your identity
Computer Hacked, System Error, Virus, Cyber attack, Malware Concept. Danger Symbol
This widely-used instant loan app leaks nearly 30 million files of user data
Latest in Security
An American flag flying outside the US Capitol building against a blue sky
The FCC is creating a security council to bolster US defenses against cyberattacks
Image depicting hands typing on a keyboard, with phishing hooks holding files, passwords and credit cards.
Microsoft warns about a new phishing campaign impersonating Booking.com
Ransomware
Microsoft uncovers sleuthy new XCSSET MacOS malware campaign
Computer Hacked, System Error, Virus, Cyber attack, Malware Concept. Danger Symbol
Meta warns of worrying security flaw hitting open source type software
Hand holding smartphone and scan fingerprint biometric identity for unlock her mobile phone
Passwordless authentication continues to grow, with biometrics helping push adoption
Data leak
Hacked Tata Technologies data leaked by ransomware gang
Latest in News
The Google Gemini logo against a black background.
I tried Gemini's new AI image generation tool - here are 5 ways to get the best art from Google's upcoming Flash 2.0 built-in image upgrade
An image of the Samsung Galaxy S25 Ultra from a hands-on event
Samsung Galaxy S26 Ultra could resurrect an intriguing camera feature
Eurocom Raptor X18
At $15,000, this massive 256GB RAM laptop makes Apple's MacBook Pro look affordable, tiny and very, very slow
Cristin Milioti in Black Mirror season 7
Netflix launches trailer for Black Mirror season 7, giving us a look at its first-ever sequel episode and an unexpected returning character
A graphic of the PC Gaming Show
Get ready for a bounty of PC games on June 8, as the PC Gaming show is back
A close up of The Daily podcast from Pocket Casts' web page
‘Podcasting shouldn’t be locked behind walled gardens’: Pocket Casts slams Spotify and makes its web player free to all