As New Year celebrations approach, the Telangana Cyber Security Bureau (TGCSB) has issued an urgent warning about a rising wave of “greeting scams” that could turn festive messages into digital threats. With WhatsApp and Telegram flooded with seasonal wishes, cybercriminals are exploiting this surge in messages to spread malicious software that can compromise personal devices and data.
According to a TGCSB advisory, scammers often send messages from accounts that appear to belong to trusted contacts — accounts that have already been hacked. These messages promise a “special personalised greeting,” a “New Year gift,” or an “SBI year-end reward” and include a link. But instead of heartfelt content, clicking the link installs a harmful Android Package Kit (APK) file on the user’s phone.
Once the malware is installed, it can give hackers near-complete access to the victim’s device. Cybersecurity experts warn that the software can read incoming SMS messages, making it possible to bypass two-factor authentication used for banking transactions. Hackers can also take over WhatsApp accounts, using them to resend the malicious link to everyone in the victim’s contact list and perpetuate the scam.
Beyond message access, the malware can potentially infiltrate the phone’s photo gallery, contacts, and even activate the microphone, exposing users to privacy violations, extortion, and identity theft. Because these malicious links often come from familiar group chats — such as family or workplace threads — users may not be immediately suspicious.
Shikha Goel, head of the TGCSB, highlighted the danger of such scams, saying that people think they are opening a greeting card but are, in reality, handing over control of their banking credentials to cybercriminals.
To protect themselves, the TGCSB has outlined several safety measures: never click on links in greeting messages from unknown or unexpected sources, avoid installing APK files received through messaging apps, enable two-step verification on WhatsApp to prevent account takeovers, and download apps only from official app stores. If a link is mistakenly clicked, users are urged to disconnect from the internet, uninstall suspicious apps immediately, and contact their bank.
The bureau also emphasised the importance of reporting cybercrime quickly — particularly within the “Golden Hour” after a fraudulent transaction — to improve the chances of freezing funds. Victims or potential victims are advised to call 1930 and file complaints on
As celebrations begin, the TGCSB’s message is clear: stay vigilant, practise good digital hygiene, and treat unexpected festive links with healthy scepticism to ensure the New Year starts on a safe note.
