Telangana TGCSB busts ₹4.70 crore WhatsApp Boss fraud, 2 arrested
Synopsis
Key Takeaways
The Telangana Cyber Security Bureau (TGCSB) has dismantled a ₹4.70 crore WhatsApp Boss fraud in Hyderabad, arresting two mule account holders who supplied bank accounts to cybercriminals impersonating a company's Managing Director. The arrests mark a significant breakthrough in one of Telangana's larger corporate impersonation fraud cases this year.
How the Fraud Unfolded
An unidentified fraudster created a WhatsApp profile using the name and photograph of the victim company's Managing Director, then sent messages directing an employee to transfer funds. Believing the instructions to be genuine, the complainant transferred a total of ₹4.70 crore to bank accounts specified by the fraudster. The scheme exploits a well-documented vulnerability: WhatsApp profiles carry no verification mechanism, making impersonation straightforward.
Who Was Arrested
Technical analysis and bank account verification led investigators to Dosapati Krishna Sai, a resident of Sathupally, Khammam district, and Mandavally Shiva Nagaraju, a resident of Kothapet, Hyderabad, originally from Sathupally, Khammam district. They are listed as accused numbers five and six in the case, indicating that the broader network remains active.
Role of Mule Accounts
According to the TGCSB, both accused knowingly procured and supplied active current bank accounts to cybercriminals in exchange for a commission. Together, they received approximately ₹4 lakh in commission, which they shared between themselves. Of the total defrauded amount, ₹1.80 crore was credited directly to Nagaraju's account, which he then routed to the fraudsters through co-accused Krishna Sai.
A deeper audit of the account revealed suspicious credit transactions totalling more than ₹2.49 crore. The account was also found to be linked to multiple cybercrime complaints registered across Maharashtra, Rajasthan, and Tamil Nadu, suggesting the mule network was operational well beyond Telangana.
Legal Action and Charges
The case was registered under Sections 318(4) and 319(2) of the Bharatiya Nyaya Sanhita (BNS), along with Section 66D of the Information Technology (IT) Act. Both accused were produced before a court and remanded to judicial custody. The TGCSB said further investigation is underway to identify and apprehend the remaining absconding accused and to trace and recover the remaining proceeds of crime.
Safety Advisory from TGCSB
TGCSB Director Shikha Goel urged the public not to trust a WhatsApp profile solely because it displays the name or photograph of a known person, noting that such details can be easily copied and misused. She cautioned that any sudden request for urgent or confidential fund transfers — particularly to a new bank account — via WhatsApp should be treated with suspicion, and advised that financial transactions should never be authorised on the basis of WhatsApp messages alone.
With the investigation still active and several accused still at large, further arrests in this case are expected in the coming days.