Photo Download Turns into Cyber Nightmare: Steganography Used to Drain Man’s Bank Account in Minutes

A scam using steganography tricked a man into downloading a photo, leading to a ₹2.01 lakh loss, highlighting evolving cyber threats and safety tips.

Tech Author Tech Author
Apr 22, 2025 - 15:55 Updated: Apr 24, 2025 - 16:11
0 17
Photo Download Turns into Cyber Nightmare: Steganography Used to Drain Man’s Bank Account in Minutes

Imagine receiving an image from an unknown number with the simple query, "Do you know this person?" That is what exactly happened with Pradeep Jain, a 28-year-old. He initially dismissed the message, but curiosity got the better of him. After downloading the photograph, hackers gained access to his phone, causing him to lose ₹2.01 lakh in within minutes.

This new fraud uses steganography, a digital strategy for hiding malicious code within media files such as photos or audio.While the file appears to be regular, it contains concealed spyware that installs silently when opened. Unlike classic scams involving suspicious links or false websites, this one is difficult to detect, even with antivirus software.

According to cyber specialists, hackers edit the smallest parts of a media file—for example, the least detectable pixels in an image—to convey malware. Once downloaded, these programs can circumvent security measures and begin collecting data from your device.

In Jain's case, the attackers even managed to imitate his voice when the bank requested verification.That demonstrates how sophisticated and destructive these scams have become.
 
Steganography conceals malware so effectively that even sophisticated techniques, such as AI-based detectors, struggle to detect the threat. File formats such as JPGs, PNGs, MP3s, and PDFs are frequently utilised because they appear innocent and are widely distributed.

How to be safe:

  • Do not open media from unknown numbers. 
  • Disable auto-downloads for apps like WhatsApp. 
  • Keep your phone's software updated. 
  • Never share an OTP. 
  • Set a limit on who can add you to groups. 
  • Use options such as "Silence Unknown Callers." 
  • Block and report any suspect accounts immediately.

Staying attentive is your best defence against more sophisticated scams. Always think hard before downloading a file from someone you don't know—it may cost you more than just storage space.

This article is based on information from The Indian Express