MBBS Student Duped of ₹1.38 Lakh After Scanning Fake QR Code in Odisha

A final-year MBBS student from a private medical college in Rourkela, Odisha, has become the latest victim of cyber fraud after losing ₹1.38 lakh to scammers posing as representatives of an online shopping platform. According to Times of India the incident, reported on July 3, 2026, serves as a stark reminder that even highly educated healthcare professionals are not immune to increasingly sophisticated digital payment scams. According to police, the student had placed an online order and successfully paid ₹1,212. Days later, she received a phone call from an individual claiming that the payment had not been received and warning that her shopping account would be blocked unless she completed the transaction again. 

Instead of directing her to the official payment portal, the fraudster sent a QR code , falsely claiming it was required to complete the payment verification. Trusting the caller, the student scanned the code, unknowingly authorizing transactions from her own bank account. Within minutes, ₹29,000 was debited, followed by two additional withdrawals totaling ₹1.09 lakh , taking her overall loss to ₹1.38 lakh. The incident highlights a persistent misconception exploited by cybercriminals: QR codes are primarily meant for making payments, not receiving money. Scanning an unknown QR code can instantly authorize a payment from the user’s account.

Also read: ₹700-Crore Medical Scam Alleged in Delhi: X-Ray Machines and Basic Supplies Massively Overpriced

Police Register Case; ₹66,000 Frozen Before It Could Disappear

Realizing she had fallen victim to fraud, the student immediately contacted the National Cyber Crime Helpline (1930) before filing a complaint at Raghunathpalli Police Station. Police subsequently registered a case under relevant provisions of the Information Technology Act and initiated an investigation into the cyber fraud network responsible for the scam. 

In a significant relief, law enforcement managed to freeze ₹66,000 of the stolen money before it could be moved further through multiple accounts. Authorities stated that the amount is likely to be recovered through the banking process. Cybercrime investigators have repeatedly emphasized that reporting fraud within the first few hours dramatically increases the chances of tracing transactions and freezing funds before they vanish into layered banking networks.

Healthcare Professionals Are Becoming Soft Targets for Cybercriminals

While this incident may appear to be an isolated financial fraud, it reflects a growing pattern of cybercriminals targeting students and professionals by exploiting trust, urgency, and digital payment habits. Medical students, interns, and resident doctors often rely heavily on online shopping and digital payments while managing hectic academic and clinical schedules. Scammers capitalize on this busy lifestyle by impersonating customer support executives, courier partners, banks, or payment platforms to pressure victims into acting without verification.

What makes these scams particularly dangerous is that they require no hacking or malware. Instead, they depend entirely on social engineering , convincing victims to voluntarily authorize payments. The fraudster never asked for passwords or OTPs; instead, the QR code itself became the instrument of financial theft. Cybercrime experts continue to warn that legitimate companies never ask customers to scan QR codes to receive refunds or verify completed payments.

The Bigger Lesson: Digital Awareness Is Now Part of Professional Safety

This case underscores an uncomfortable reality: professional education does not automatically translate into digital security awareness. As healthcare professionals increasingly depend on UPI, mobile banking, and e-commerce platforms, cyber hygiene has become as important as financial literacy.

Simple precautions can prevent devastating losses. Users should never scan QR codes sent through unsolicited calls or messages, should independently verify customer care numbers through official websites or apps, and should remember that receiving money never requires entering a UPI PIN or scanning a payment QR code. Any caller creating urgency by threatening account suspension, failed payments, or cancelled orders should immediately raise suspicion.

For medical students and healthcare workers, who routinely handle digital payments between long hospital shifts, this incident is a timely reminder that vigilance must extend beyond the wards and into the digital world. A few seconds of verification can prevent the loss of months’ worth of savings.

Dr. Pramod Dhakad

Dr. Pramod Dhakad is the founder and chief editor of MedSnaps, a dedicated news platform covering the medical community, healthcare policy, and the professional lives of doctors and medicos. Navigating the intense landscape of medical education themselves, they created MedSnaps to deliver fast, punchy, and relevant news that frontline clinicians, residents, and medical students actually care about.From breaking down NMC regulatory shifts and healthcare policy to reporting on critical campus updates, legal battles, and resident doctor welfare, Dr. Dhakad ensures the medical fraternity stays informed without the informational bloat. MedSnaps serves as a sharp, 2-3 minute daily news briefing for a community that doesn't have time to waste on generic reporting.

Leave a Reply

Your email address will not be published. Required fields are marked *