A large-scale scam has surfaced, impacting air travelers in India, with over 450 passengers losing upwards of ₹9 lakhs (about $11,000) due to a fake Android app called “Lounge Pass.” Pretending to offer access to airport lounges, the app instead exploited users financially. Authorities caution that this scheme could be part of a wider scam network, as other similar fraudulent apps are actively circulating and targeting travelers.
CloudSEK’s threat research team discovered the scam, noting its specific focus on travelers seeking lounge access, a particularly concerning tactic within the aviation sector.
The scam gained attention after a viral post on X (formerly Twitter) described how one traveler at Bengaluru Airport fell victim to the app, losing over ₹87,000.
– 450 victims in total: Between July and August 2024, around 450 travelers unknowingly downloaded the counterfeit “Lounge Pass” app on Android.
– ₹9 lakh stolen: Scammers accessed SMS messages from users’ phones, enabling them to extract over ₹9 lakhs during this timeframe.
– Distribution tactics: The app was shared primarily through WhatsApp links, directing users to fake domains, such as “loungepass,” to further the scam.
