LPG Cylinder Scam in India: TraceX Labs Exposes Fake Bharat Gas, Indane & HP Gas Booking Links, APK Malware and UPI Fraud

India is witnessing a sharp rise in LPG cylinder booking scams, with cybercriminals targeting users of popular gas providers like Bharat Gas, Indane, and HP Gas through fake links, WhatsApp messages, and malicious mobile applications. As rumours of a gas shortage spread online, authorities have clarified that there is no actual shortage of LPG, but the panic created by misinformation is being actively exploited by fraudsters to carry out large-scale financial scams.

Across several states including Maharashtra, Punjab, Odisha, Karnataka, and Uttarakhand, victims have reported losing significant amounts of money after interacting with fraudulent LPG booking messages. These messages often warn users about connection disconnection, pending payments, or urgent booking requirements, pushing them to act quickly. By using trusted brand names such as Bharat Gas, Indane, and HP Gas, scammers make these messages appear authentic and convincing.

According to cybersecurity researchers at TraceX Labs, this scam has evolved into a highly sophisticated cyber attack. Many victims are being tricked into downloading trojanized APK files, which are disguised as LPG booking or customer support applications. Once installed, these apps deploy Remote Access Trojan (RAT) malware, giving attackers complete control over the victims device. This allows them to monitor activity, read SMS messages, capture OTPs, and access banking and UPI apps without the users knowledge.

Experts further warn about the use of advanced UPI bypass techniques, where attackers manipulate authentication tokens to initiate transactions silently. This means money can be transferred from a victims account without triggering standard verification alerts, making the fraud faster and harder to detect. Such methods are increasingly being used in modern mobile-based financial attacks.

One of the most alarming aspects of this LPG scam is its viral spread mechanism. Once a device is compromised, the malware can automatically access contacts and send malicious links or APK files to friends and family through messaging platforms like WhatsApp. Since these messages come from trusted contacts, recipients are more likely to click on them, unknowingly spreading the scam further. This chain-based distribution makes the attack difficult to control and allows it to circulate rapidly.

In addition to malware-based attacks, cybercriminals are also creating fake LPG booking websites that closely resemble official portals. They are using QR code scams promising cashback and screen-sharing apps to gain remote access to victimsdevices. In most cases, victims believe they are completing a normal LPG booking or verification process, while in reality, they are exposing their sensitive financial data.

Security experts emphasize that this is not just a simple phishing scam, but a combination of social engineering, mobile malware, and financial fraud techniques. The attackers rely on fear, urgency, and trust in well-known LPG brands to manipulate users into making quick decisions without proper verification.

To stay safe, users should always book LPG cylinders through official apps or websites of their gas providers and avoid clicking on unknown links. Installing APK files from untrusted sources should be strictly avoided, and users must never share OTPs, UPI PINs, or banking details with anyone. Even messages received from known contacts should be verified, as compromised devices can unknowingly spread malicious content.

Authorities have urged citizens not to panic and to remain cautious. In case of any suspected fraud, individuals should immediately report it to the national cybercrime helpline 1930, as quick action can help prevent further financial loss.

The rise of LPG cylinder scams in India highlights how cybercriminals are becoming more advanced by combining misinformation, trusted brand impersonation, and malware-based attacks. Staying informed and alert is the most effective way to protect against such evolving digital threats.