State Bank of India (SBI), the nation’s largest public sector lender, has issued a high-priority advisory to its customers regarding a sophisticated phishing campaign currently circulating via SMS and WhatsApp. Fraudsters are reportedly sending "urgent" notifications claiming that a user's YONO mobile banking access will be deactivated unless they immediately update their Aadhaar details through a provided link.

Bank officials have confirmed that these messages are fraudulent and part of a broader attempt to steal sensitive banking credentials and personal data. Cyber Scam: Mumbai Judge Loses INR 93,000 After Downloading APK File via Fake Samsung Customer Care App on WhatsApp.

The Mechanics of the 'Aadhaar Update' Scam

The scam typically begins with a text message that uses high-pressure language to create a sense of panic. A common version of the message informs the recipient that their "SBI YONO account will be blocked tonight" due to an outdated Aadhaar number. The message then directs the user to click a link to install an "official SBI Aadhaar update app". In reality, this link leads to a malicious website or a rogue APK (Android Package) file. Once installed, these applications can capture login IDs, passwords, and One-Time Passwords (OTPs), allowing scammers to drain funds from the victim’s bank account.

Download Apps Only From the Official Play Store / App Store, Says SBI

SBI's Official Safety Guidelines

In a recent post on the social media platform X (formerly Twitter), SBI emphasised that the bank never requests sensitive information or application downloads via unsolicited messages. The bank shared several critical safety measures to help customers protect their assets:

  • Avoid Unknown Links: Do not click on links or download attachments from SMS, WhatsApp, or emails sent by unknown numbers.

  • Use Official Sources: Only download the YONO app or any banking software from the official Google Play Store or Apple App Store.

  • No Third-Party APKs: Never install "APK" files shared through chat apps, as these often bypass standard security protocols to infect devices with malware.

Managing App Permissions and Security

Security experts further advise that users should regularly audit the applications installed on their smartphones. This includes checking "App Permissions" to ensure that no third-party software has unnecessary access to SMS, contacts, or camera functions, which are often exploited in financial fraud. CBI Arrests 2 Reliance Communications Executives in INR 19,694 Crore Bank Fraud Case Following Complaint by State Bank of India.

Digital Fraud in India

This advisory comes at a time when digital banking fraud is becoming increasingly targeted. Scammers often leverage the mandatory nature of Aadhaar linking to make their claims seem legitimate. By creating a false sense of urgency - such as threatening a "tonight" deadline - they hope to bypass the customer's typical caution. SBI has reiterated that customers should report any suspicious activity immediately through the official national cybercrime portal or the bank’s dedicated helpline.

TruLY Score by LatestLY
Rating:5

TruLY Score 5 – Trustworthy | On a Trust Scale of 0-5 this article has scored 5 on LatestLY. It is verified through official sources (Official X Account of SBI). The information is thoroughly cross-checked and confirmed. You can confidently share this article with your friends and family, knowing it is trustworthy and reliable.

(The above story first appeared on LatestLY on Apr 22, 2026 10:08 AM IST. For more news and updates on politics, world, sports, entertainment and lifestyle, log on to our website latestly.com).