Infinity Fraud case of Rs. 2 Million

Infinity Fraud case of Rs. 2 Million – Name Mr.Kumar (name changed), Savings A/c no- 123456

There were Internet transactions in a savings bank a/c123456 of a customer Mr. Kumar within a week amounting to Rs 20, 00,000. The amount has been transferred to same Bank’s a/c no 100100 of Mr. Super tramp .As per customer these transactions were not done by him.
Total of 20.0 L were transferred to the account of Mr. Super Tramp, the beneficiary a/c was frozen after knowing about the unauthorized transaction. The culprit had withdrawn 2L via ATM by the time it was detected and a/c got freezed.
Modus Operandi of the accused and findings:
About Hacker (Mr. Super tramp)
The accused was a 20 years 12th failed guy from a very low economic background. He started as a passion to learn hacking after doing a brief course in computer basics. He used to chat on yahoo messenger posing as a girl. He started learning hacking from other chat friends and through them came to know about a site called www.prorat.net .This site offers software packages which if used for negative purpose can be used for hacking. He used the free prorat version 1.9 which is available on the site.

The Trap
He used to chat with people posing as girl and when they would request for his photo he used to give Trojan infected photo along with a blinder, in .exe format.
When the requester used to download the photo on his system the Trojan virus would infect his system and work as a key- logger and prepare a log file of the system recording each keystroke .All the details on this infected system would automatically be updated to the hacker.
By using this data he used to get details like user name password transaction password of the person .In this case he was chatting with some Mr. Sharma and through the system of Mr. Sharma he found out details of Mr. Kumar’s account. Mr. Kumar when he was in India had checked his account balance on this system of his friend..

With details collected from hacking, he logged into Bank Internet banking a/c of Mr. Kumar, and came to know that given account had large balance in it. He then planned to transfer the amount to some dummy a/c, then he chose Saving A/c of the same bank as it easy way to do transfers from same bank a/c. He prepared fake documents by paying agent of RTO for driving license, and with the help of branch walking-in, he received the joining kit, and started the process of transferring the money from Mr. Kumars a/c.
Internet Money Transfer
Going through Mr. Kumar’s a/c he came to know that no mobile number has been registered for this a/c and hence he got dummy pre-paid mobile number as prepaid card did not require any document during activation, he got the same easily. He added the same mobile number and registered Mr. Kumar for mobile alerts.
The accused also managed to bribe a bank insider to get few more details which he needed to validate the transfer.
The accused Mr. Super tramp was able to hack many a/c’s with different banks, and was lucky to find an account with a large balance.
With the help of ATM clippings of the withdrawals on the accused a/c, the accused was recognized by one of the bank official and was later caught and was put to police remand.
This case of internet fraud happened with an MNC known for its robust and intact internet banking website with all filters to check a fraudster to enter the system.
The logic and efforts put in by a 12th fail, 20 yrs guy highlighted the vulnerability of public awareness and banking security systems.