{"id":11953,"date":"2026-04-08T10:03:43","date_gmt":"2026-04-08T10:03:43","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2026\/04\/08\/indian-bank-warns-users-of-fake-lpg-payment-and-kyc-update-scams-to-steal-banking-info\/"},"modified":"2026-04-08T10:03:43","modified_gmt":"2026-04-08T10:03:43","slug":"indian-bank-warns-users-of-fake-lpg-payment-and-kyc-update-scams-to-steal-banking-info","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2026\/04\/08\/indian-bank-warns-users-of-fake-lpg-payment-and-kyc-update-scams-to-steal-banking-info\/","title":{"rendered":"Indian Bank Warns Users of Fake LPG Payment and KYC Update Scams to Steal Banking Info"},"content":{"rendered":"<p>    Indian Bank Warns Users of Fake LPG Payment and KYC Update Scams to Steal Banking Info<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>\n<p>Indian Bank has issued an urgent cybersecurity advisory warning its customers about a rapidly spreading wave of fraudulent LPG payment and KYC update messages that are being used to steal banking credentials and drain accounts.<\/p>\n<p>Cybercriminals are exploiting growing public concern over LPG cylinder availability to circulate deceptive messages across SMS, WhatsApp, and other messaging platforms.<\/p>\n<p>These messages impersonate official communications from major LPG providers such as Indane, Bharat Gas, and HP Gas, falsely warning recipients that their gas connection will be suspended unless they immediately update their KYC details or clear a pending payment.<\/p>\n<p>The fraud follows a well-crafted <a href=\"https:\/\/cybersecuritynews.com\/how-businesses-stop-complex-social-engineering-attacks-early\/\" target=\"_blank\" rel=\"noreferrer noopener\">social engineering<\/a> playbook. Victims receive urgent-sounding alerts such as <em>\u201cYour LPG KYC is pending. Limited stock.<\/em><\/p>\n<p><em>Click here to update and order,<\/em> or \u201cImmediate payment required to continue connection. Avoid LPG disconnection. Click on link\u201d is designed to trigger panic and override rational judgment.<\/p>\n<p>When users tap on the embedded link, they are redirected to convincing but fake websites that harvest their banking credentials, UPI PINs, and OTPs.<\/p>\n<figure class=\"wp-block-embed is-type-rich is-provider-twitter wp-block-embed-twitter\">\n<div class=\"wp-block-embed__wrapper\">\n<div class=\"embed-twitter\">\n<blockquote class=\"twitter-tweet\" data-width=\"550\" data-dnt=\"true\">\n<p lang=\"en\" dir=\"ltr\">Fake LPG payment and KYC update messages with malicious links are being circulated to trick customers and steal banking details. Do not click on unknown links or share personal information. Always verify through official channels. Stay alert and protect your bank account from\u2026 <a href=\"https:\/\/t.co\/qxp9ZItWTn\">pic.twitter.com\/qxp9ZItWTn<\/a><\/p>\n<p>\u2014 Indian Bank (@MyIndianBank) <a href=\"https:\/\/twitter.com\/MyIndianBank\/status\/2034608329041838403?ref_src=twsrc%5Etfw\">March 19, 2026<\/a>\n<\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script>\n<\/div>\n<\/div>\n<\/figure>\n<p>In more sophisticated variants of this attack, fraudsters send malicious APK files through WhatsApp, which, once installed, grant attackers covert access to the victim\u2019s device, exposing stored banking applications, saved passwords, and sensitive personal data.<\/p>\n<p>Some threat actors have also been reported to <a href=\"https:\/\/cybersecuritynews.com\/threat-actors-whatsapp-crash-exploit\/\" target=\"_blank\" rel=\"noreferrer noopener\">pose as bank officials via WhatsApp calls<\/a>, directing users to click specific links under the guise of urgent account verification.<\/p>\n<p>Indian authorities, including Delhi Police\u2019s cybercrime units, have already received multiple complaints through the national cybercrime helpline 1930 related to these fraudulent LPG messages.<\/p>\n<p>Scammers are running fake social media ads using the logos of reputable gas companies to funnel anxious consumers to bogus payment portals, where financial data is silently siphoned.<\/p>\n<p>Security researchers have identified this as a <a href=\"https:\/\/cybersecuritynews.com\/phishing-campaign-exploits-google-cloud\/\" target=\"_blank\" rel=\"noreferrer noopener\">classic event-driven phishing campaign<\/a> leveraging fears of LPG scarcity to maximize victim conversion rates.<\/p>\n<h2 class=\"wp-block-heading\" id=\"how-to-stay-protected\"><strong>How to Stay Protected<\/strong><\/h2>\n<p>Indian Bank\u2019s advisory, amplified under its IndSmart and \u201cKhabar Nahi, Khabardar Bano\u201d awareness initiatives, urges customers to follow these essential safety practices:<\/p>\n<ul class=\"wp-block-list\">\n<li>\n<strong>Never click<\/strong> on links received via SMS, WhatsApp, or social media claiming to be from LPG providers<\/li>\n<li>\n<strong>Never share<\/strong> OTPs, UPI PINs, Aadhaar numbers, or banking credentials with anyone<\/li>\n<li>\n<strong>Always verify<\/strong> delivery status or KYC requirements exclusively through official LPG provider apps or authorized helplines<\/li>\n<li>\n<strong>Do not install<\/strong> APK files received through messaging apps from unknown numbers<\/li>\n<li>\n<strong>Report suspicious messages<\/strong> immediately to the national cybercrime helpline 1930 or visit www.cybercrime.gov.in<\/li>\n<\/ul>\n<p>No legitimate LPG provider or bank will ever request payment or personal verification through unsolicited links. When in doubt, call your gas agency directly using the official number printed on your last delivery receipt.<\/p>\n<p class=\"has-text-align-center has-background\" style=\"background:linear-gradient(180deg,rgb(238,238,238) 94%,rgb(169,184,195) 100%)\"><strong>Follow us on <a href=\"https:\/\/news.google.com\/publications\/CAAqMggKIixDQklTR3dnTWFoY0tGV041WW1WeWMyVmpkWEpwZEhsdVpYZHpMbU52YlNnQVAB?hl=en-IN&amp;gl=IN&amp;ceid=IN:en\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Google News<\/a>, <a href=\"https:\/\/www.linkedin.com\/company\/cybersecurity-news\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">LinkedIn<\/a>, and <a href=\"https:\/\/x.com\/cyber_press_org\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">X<\/a> for daily cybersecurity updates. <a href=\"https:\/\/cybersecuritynews.com\/contact-us\/\" target=\"_blank\" rel=\"noreferrer noopener nofollow\">Contact us<\/a> to feature your stories.<\/strong><\/p>\n<p>The post <a href=\"https:\/\/cybersecuritynews.com\/fake-lpg-payment-and-kyc-update\/\">Indian Bank Warns Users of Fake LPG Payment and KYC Update Scams to Steal Banking Info<\/a> appeared first on <a href=\"https:\/\/cybersecuritynews.com\/\">Cyber Security News<\/a>.<\/p>\n<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><br \/>\n    Guru Baran<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/cybersecuritynews.com\/fake-lpg-payment-and-kyc-update\/\">Go to cyber-security-news<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Indian Bank Warns Users of Fake LPG Payment and KYC Update Scams to Steal Banking Info Indian Bank has issued an urgent cybersecurity advisory warning its customers about a rapidly spreading wave of fraudulent LPG payment and KYC update messages that are being used to steal banking credentials and drain accounts. Cybercriminals are exploiting growing [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[129,63],"tags":[130],"class_list":["post-11953","post","type-post","status-publish","format-standard","hentry","category-cyber-security","category-cyber-security-news","tag-cyber-security-news"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/11953"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=11953"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/11953\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=11953"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=11953"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=11953"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}