Second CBI charge-sheet soon against Mallya, to name officials
New Delhi, Sep 17 : The CBI will name some bank officials in its second charge-sheet to be filed soon against fugitive businessman Vijay Mallya in a Rs 9,000-crore loan default case against him and his now-defunct Kingfisher Airlines, informed sources said.
Both serving and retired senior officials of a consortium of 17 banks, including the SBI, who had handled the Kingfisher Airlines loans, are to be named as accused in the charge-sheet as the CBI has gathered enough evidence against them on misuse of official position, the sources said.
The charge-sheet will mention the details of loan fraud committed by Mallya against a consortium of 17 banks led by the State Bank of India (SBI), said the sources, adding that some of these loans were granted despite Kingfisher's low creditworthiness and overvaluation of some securities.
Kingfisher began defaulting on loans beginning 2009-10.
According to the sources, the Central Bureau of Investigation (CBI) has come across the role of some senior bank officials in the irregularities while disbursing these loans.
The then Chief Managing Directors of banks -- O.P. Bhatt (SBI), T.S. Narayanaswami (Bank of India), M.D. Mallya (Bank of Baroda), S.K. Goel (UCO Bank), and then Chairman of United Bank -- are to be named in the charge-sheet against whom action was not taken in 2009 when a loan of Rs 2,000 crore was sanctioned to Kingfisher, said the sources.
"Bhatt is learnt to have led the consortium to offer the Rs 2,000 crore loan and also ensured that the SBI have a loan of Rs 300 crore on an ad hoc basis in August 2010."
Ex-Kingfisher Airlines Chief Financial Officer A. Raghunathan and other former senior executives are also likely to be named in the charge-sheet.
Mallya is currently facing extradition from London where he flew on March 2, 2016.
The CBI last year had filed a charge-sheet against Mallya in a separate case related to a Rs 900 crore pending loan given by IDBI Bank in which senior officials of the bank were allegedly involved.
The probe agency had registered two cases against Mallya related to the IDBI loans in 2015 and a consortium loan in 2016.
The CBI and the Enforcement Directorate, which is probing the money laundering aspect in the case, have named IDBI officials B.K. Batra, Yogesh Agarwal, O.V. Bundelu, S.K Shrivastava and R.S. Sridhar in their charge sheets last year.
The CBI FIR alleged that the SBI and its consortium banks had advanced various credit facilities to Kingfisher Airlines between 2005 and 2010.
During 2009-10, the company failed to meet its repayment commitments to the banks.
Let the Truth be known. If you read VB and like VB, please be a VB Supporter and Help us deliver the Truth to one and all.
TraceX Guard Strengthens National Safety Against Mobile Cyber Threats
India is witnessing a sharp rise in trojanised Android APK scams, as cybercriminals increasingly exploit fake government, banking, LPG, challan, and welfare scheme apps to seize full remote control of victims’ smartphones.
Cybersecurity investigators warn that attackers are now widely deploying Remote Access Trojan (RAT) malware, often powered by leaked builder kits such as CraxsRAT and heavily modified custom payload frameworks. Once installed, these malicious APKs can convert an ordinary Android phone into a fully controlled fraud device, enabling silent surveillance, banking theft, and mass scam propagation.
These malware campaigns are primarily being distributed through WhatsApp, Telegram, SMS phishing links, and fake APK download websites, where users are tricked into installing apps disguised as:
- e-Challan apps
- SBI KYC verification tools
- PM Yojana portals
- mParivahan clones
- LPG booking apps
- fake adult video call apps
As the scale of the threat intensifies, cybersecurity startup TraceX Labs has introduced TraceX Guard, positioning it as a frontline mobile defence platform against APK fraud, RAT infections, QR scams, and malicious permission abuse.
Fear-Based Social Engineering Behind the Surge
According to investigators, these frauds typically begin with panic-driven social engineering messages sent over WhatsApp or Telegram.
Common bait messages include:
- Your traffic challan has been issued
- Your SBI KYC is pending
- PM Yojana verification required
- Your LPG cylinder booking failed
- Your bank account will be blocked
These alerts often include fake challan numbers, vehicle details, Aadhaar-linked references, or forged bank notices, creating a sense of urgency that pushes victims to install the malicious APK without verification.
One of the most dangerous variants currently in circulation is a fake mParivahan-style application, which closely mimics India’s legitimate transport services interface while secretly embedding a hidden RAT payload.
How the Malware Takes Over Smartphones
Once installed, the malicious APK immediately requests dangerous permissions, including:
- Accessibility access
- SMS permissions
- Call logs
- Notifications
- File storage
- Battery optimization exemptions
Security researchers say Accessibility Service abuse remains the most critical attack vector, allowing the malware to silently:
- read screen contents
- detect banking and UPI apps
- auto-click Allow / Confirm / Pay buttons
- capture OTPs
- launch hidden overlays
- navigate banking sessions
- trigger silent fund transfers
Because these actions occur directly on the victim’s trusted device, attackers are often able to bypass traditional fraud detection systems.
Within minutes, victims may lose control over:
- bank balances
- UPI wallets
- Aadhaar and PAN scans
- contact lists
- personal photos and media
- incoming calls
- SMS OTPs
In many cases, the malware also self-propagates by forwarding malicious APK links through the victim’s own WhatsApp groups and Telegram chats, triggering a chain infection effect across trusted social circles.Fake RTO Challan APKs Become the Most Dangerous Variant
Among the most active campaigns, fake RTO challan APK scams have emerged as one of the most financially destructive.
Victims are first lured into paying a ₹1 “verification fee”, after which the malicious app requests highly sensitive information such as:
- card number
- expiry date
- CVV
- UPI PIN
- net banking credentials
- even ATM PINs
Cybersecurity experts stress that no legitimate government payment system ever asks for an ATM PIN inside an app, making this an immediate red flag.
Once payment details are entered, the embedded RAT intercepts OTPs and silently completes unauthorized transactions.
India’s Mobile Fraud Crisis Reaches Critical Levels
Investigators estimate that more than 70% of reported cyber fraud cases in India now originate from mobile devices, with millions of complaints linked to:
- malicious APKs
- phishing URLs
- QR scams
- RAT droppers
- banking session hijacks
- WhatsApp fraud chains
The impact is particularly severe across Tier-2 and Tier-3 regions, where smartphone adoption has expanded faster than awareness around:
- APK sideloading risks
- dangerous permissions
- fake banking overlays
- accessibility abuse
- WhatsApp APK scams
This has effectively turned Android smartphones into the primary battlefield of India’s financial cybercrime ecosystem.
TraceX Guard Introduced as a Real-Time Defence Layer
In response to this rapidly evolving threat landscape, TraceX Labs has launched TraceX Guard, an AI-powered multilingual Android security suite built specifically for India’s APK fraud ecosystem.
The platform offers:
- real-time APK scanning
- malicious permission detection
- hidden app discovery
- RAT behaviour monitoring
- QR & phishing URL safety grading
- OTP and SIM fraud alerts
- Wi-Fi hotspot verification
- ransomware defence
- India-specific scam intelligence feeds
- support for 10+ regional languages
Its offline-first AI architecture allows users to scan threats without uploading personal data, making it especially useful for privacy-conscious users and low-connectivity regions.
TraceX Labs says the system is specifically trained to detect patterns used in:
- fake challan scams
- counterfeit SBI APKs
- PM Yojana malware
- wedding invitation APK attacks
- honey-trap adult apps
- Telegram-based RAT droppers
From Phishing to Malware-Driven Financial Warfare
Cybersecurity analysts say this marks a major shift in India’s digital threat landscape.
What once began as simple phishing links has now evolved into malware-driven financial warfare at scale, where a single infected smartphone can silently compromise:
- families
- WhatsApp groups
- banking accounts
- local communities
- social trust networks
With losses from mobile-first fraud already running into tens of thousands of crores, experts believe the future of cyber defence will increasingly depend on preventive mobile security tools capable of stopping unsafe APKs before installation.
In that battle, TraceX Guard is emerging as one of the most important first lines of defence for India’s digital users.
Download Now : https://play.google.com/store/apps/details?id=com.tracexlabs.guard
