A new and highly organized cybercrime ring has begun targeting vehicle owners. As part of a nationwide anti-phishing operation, more than 36 fake e-challan websites have been identified, which are created by mimicking official government traffic enforcement portals. This information has been revealed in a recent report by Cyble Research and Intelligence Labs (CRIL).
How fake e-challan messages are trapping unsuspecting vehicle owners
According to the report, cybercriminals are gradually shifting away from malware-based attacks toward browser-based phishing techniques. In this method, instead of exploiting technical vulnerabilities, social engineering and people's trust in government institutions are being weaponized to steal sensitive financial information.
Also Read | Google Disco turns web searches into smart workspaces. Here's how to do it?
The main targets of this fraud are ordinary drivers. Fake SMS messages are being sent to their mobile phones, informing them that a traffic challan is pending in their name.
In many cases, the messages also threaten license cancellation, legal action, or increased fines to create panic and force recipients to make quick decisions. Clicking on the link in the message takes users to a fake website that looks exactly like regional transport department or e-challan portals. According to experts, the fake website that opens when the link is clicked features government logos, color schemes, and appears exactly like genuine government sites. It displays completely fabricated traffic violation details.
Typically, a small fine amount of around ₹500–600 is shown along with a very short deadline for payment submission.
Investigators have reported that all this information is dynamically generated and has no connection to any actual government database or vehicle records. One of the biggest warning signs identified by experts is the limitation in payment options. While genuine government portals usually offer multiple digital payment options including UPI and net banking, these fake e-challan sites only accept payments through credit and debit cards. Users are asked to provide complete card information including card number, expiry date, and CVV. The sites claim that transactions are processed through India's reputed banks to increase credibility. Even if a transaction is not completed, the site repeatedly provides opportunities to enter information—allowing fraudsters to collect card details multiple times from the same user.
Also Read | Planning a winter bike trip? Here's a list of essential bike accessories for winter solo rides
The investigation has revealed that this fraud ring is using local infrastructure to increase credibility. SMS messages are sent from mobile numbers registered with Indian telecom companies, and some backend-linked accounts have connections to State Bank as well.
According to security experts, using such local sources creates much greater trust among people, as the messages appear to come from within the country. This is because familiar and official banking institution names are used in each case.
