cyber crime

India Strengthens Cybersecurity Framework to Combat Rising Cybercrimes

The Central government has strengthened its fight against cybercrime by adopting a multi-pronged framework that would strengthen the country’s response to new digital threats. December 4, 2024: The Indian government has ramped up its efforts to tackle the growing threat of cybercrime, unveiling a multi-pronged framework aimed at addressing new digital challenges and protecting citizens from a wide range of online crimes. The proactive approach was highlighted by Union Minister of State for Home Affairs, Bandi Sanjay Kumar, in response to an unstarred question in the Lok Sabha today. The government’s strategy includes strengthening legal measures, bolstering investigative capabilities, and enhancing public awareness. At the heart of the government’s efforts is the Indian Cyber Crime Coordination Centre (I4C), a central mechanism for handling cybercrimes. Through this system, law enforcement agencies are empowered to report, investigate, and resolve cybercrime cases, including financial fraud, and crimes against women and children. One of the key innovations is the National Cyber Crime Reporting Portal, which allows citizens to report incidents online, with a special emphasis on crimes targeting vulnerable groups. The Citizen Financial Cyber Fraud Reporting System, introduced in 2021, has proven crucial in halting cyber fraud, saving over Rs 3,431 crore across nearly 10 lakh complaints. A toll-free helpline, 1930, has also been established to enable immediate reporting of financial cybercrimes. The Indian government has reinforced its legal framework to address digital threats with key legislation, including the Information Technology Act, of 2000, the Bharatiya Nyaya Sanhita, of 2023, and the POCSO Act, of 2012. According to the National Crime Records Bureau (NCRB), there were 17,470 reported cases of cyber fraud in 2022 alone, including 6,491 OTP fraud cases and 2,910 online banking frauds. In response to the growing sophistication of cybercrimes, the government has made significant investments in cyber forensics. The National Cyber Forensic Laboratory (Investigation) in New Delhi, along with a facility in Hyderabad, is providing state-of-the-art forensic assistance to law enforcement. Additionally, over 98,000 officers have been trained through the CyTrain portal, equipping them with specialized skills to handle cybercrimes. Cyber hygiene awareness campaigns have also been conducted nationwide, targeting government officials, youth organizations, and the general public. The government’s public awareness campaign includes mobile SMS alerts, social media outreach, and digital displays at public transport locations. Influencer collaborations and radio and newspaper campaigns have further amplified the government’s message. Additionally, measures have been taken to block international spoofed calls, which are often used in scams such as impersonation and fake arrests. As part of these efforts, more than 6.69 lakh SIM cards and 1.32 lakh IMEIs have been blocked. The Cyber Crime Prevention against Women and Children (CCPWC) scheme, a key component of the government’s cybersecurity strategy, has allocated Rs 131.6 crore to create forensic-cum-training laboratories and train over 24,600 personnel in awareness and investigation techniques. A special focus has been placed on cybercrime hubs, like Jamtara in Jharkhand and Hyderabad, where joint cyber coordination teams have been set up to enhance law enforcement collaboration.

Goa CM Pramod Sawant’s email was hacked, restored

According to an official, the Cyber Crime cell of Goa Police immediately swung into action and the CM’s personal Gmail ID was restored after four to five hours. Goa police have initiated a probe days after the personal email account of Chief Minister Pramod Sawant was hacked. According to sources, the chief minister’s Gmail ID was hacked on November 19, following which a complaint was lodged with the cyber-crime cell of Goa police. The account was recovered after over five hours, police said. They said the accused hacker also changed information related to the recovery of the email account but that the account was not misused. “A probe has been initiated to track the hacker. As per the investigation so far, no data from the account has been found missing,” said a police official.

Cyber Crime: 11,333 Crore loss in just 9 monoliths In Cyber Scams Have Hit India

Data compiled by the Indian Cyber Crime Coordination Centre (I4C) shows nearly half of the 12 lakh cyber fraud complaints received in 2024 were perpetrated by fraudsters based in Southeast Asian countries — Cambodia, Myanmar, and Laos.According to data compiled by the Indian Cyber Crime Coordination Centre (I4C), a division of the Ministry of Home Affairs (MHA), India lost approximately Rs 11,333 crore to cyber fraud in the first nine months of 2024. Stock trading scams accounted for the largest share, with losses of Rs 4,636 crore from 2,28,094 complaints. Investment-based scams caused losses of Rs 3,216 crore from 1,00,360 complaints, while Rs 1,616 crore was lost to “digital arrest” frauds across 63,481 complaints. Data from the Citizen Financial Cyber Fraud Reporting and Management System (CFCFRMS), as seen by The Indian Express, showed nearly 12 lakh cyber fraud complaints were received in 2024, with 45% of these originating from Southeast Asian countries—Cambodia, Myanmar, and Laos. Since 2021, the CFCFRMS has recorded 30.05 lakh complaints, leading to losses amounting to ₹27,914 crore. Of these, 11,31,221 complaints were registered in 2023, 5,14,741 in 2022, and 1,35,242 in 2021. Prime Minister Narendra Modi recently cautioned citizens about “digital arrest” frauds during the 115th edition of his ‘Mann Ki Baat’ radio program. Stressing that no government agency contacts individuals via phone or video calls for investigations, Modi urged the public to remain alert. “There is no system like digital arrest under the law,” he said, emphasizing the importance of awareness to combat such scams. An analysis of cyber frauds this year revealed that stolen money is often withdrawn using cheques, central bank digital currency (CBDC), fintech crypto, ATMs, merchant payments, and e-wallets. Over the past year, the I4C has frozen around 4.5 lakh mule bank accounts, typically used to launder the proceeds of cybercrime. At a recent anti-terror conference, the I4C flagged challenges faced by investigators in cyber fraud cases, including the anonymity of digital wallets, foreign money exchanges, lack of KYC protocols, VPN access, and cryptocurrency frauds originating from abroad. In collaboration with the telecom ministry, the I4C has also blocked 17,000 WhatsApp accounts linked to cybercriminals operating out of Southeast Asia, as part of efforts to disrupt offshore criminal networks and strengthen India’s digital security.

Rs 12L refunded to FedEx parcel scam victim

The Hyderabad city cyber-crime police refunded an amount of Rs 12 lakh to victims cheated by cyber fraudsters under the pretext of FedEx. According to the police, they received a complaint from a 51-year-old male private employee from Hyderabad, stating that cyber fraudsters had cheated him under the pretext of FedEx parcels and fake police. The fraudsters made him transfer an amount of Rs 16 lakh to bank accounts provided by the accused. Following the complaint, the cybercrime police registered a case, and the investigation is underway. Inspector K Madhusudhan Rao and his team made significant efforts to send notices to the bank officials, followed up to freeze the fraudulent amount, and guided the complainant to file a petition in court for the refund of the held funds. The police said the efforts resulted in Rs 12 lakh refunding the complainant’s bank account. Cybercrime police advised people not to panic if they receive any threatening video calls claiming them to be CBI, RBI, ED, customs, judges, cybercrime police, narcotics, FedEx, BSNL, and TRAI. There is no digital arrest or inquiry in the system. If a call raises suspicions, individuals should end the call immediately, without engaging further, and any fear report near the police station. Any government agency or law enforcement officials will not make Skype calls and demand monNo government agency or law enforcement officials will ey to clear the issue. Scammers can employ psychological tactics to manipulate emotions and decision-making. Do not deposit money in the unknown bank accounts believing false promises of unknown persons.

Police hold cybercrime awareness sessions for senior citizens

Cybercrimes are rising exponentially. While Bengaluru reported 17,633 cases in 2023, it had already registered 12,356 cases by August 30, 2024. An awareness program on cyber-crimes for around 50 senior citizens was held last week at the CSI Church, Hennur Cross. The session began with a police officer asking the participants for their personal and bank details, which the senior citizens shared without hesitation. The officer then explained the common modus operandi of cyber fraudsters, the importance of data privacy, and the dos and don’ts for protecting themselves from cybercrimes. At the end of the session, he asked them again to share their bank details, and they complied. “Awareness about data privacy doesn’t come easily, especially when a trusted person or someone occupying a position of authority asks for such details,” the officer remarked. Vulnerable targets The Bengaluru City Police recently launched a cybercrime awareness campaign in collaboration with the Elders’ Helpline, recognising that senior citizens are among the most vulnerable targets for cyber fraud due to limited digital literacy. Additionally, senior citizens often have their life savings in their bank accounts, making them attractive targets for fraudsters. This campaign comes at a time when cybercrimes are rising exponentially. While the city reported 17,633 cases in 2023, it had already registered 12,356 cases by August 30, 2024. “Most of the senior citizens attending our programmes, despite being educated, are unaware that no legitimate entity — be it banks, security agencies, or courier companies — would ask for their details or claim to ‘digitally arrest’ them. “If you have done nothing wrong, there’s no need to fear. The Prime Minister himself recently clarified that the concept of a digital arrest does not exist. You should never disclose personal information, even to those claiming to represent government agencies like the police or customs. Be wary, even if they make video calls in full uniform,” he advised. Be calm “The key is to remain calm. Most cyber fraudsters induce panic to extract bank details. We hope that raising awareness about their tactics will empower seniors to refuse such requests confidently,” said Dhananjaya J.N., a counsellor from Elders’ Helpline. The campaign also offers practical tips on recognising suspicious calls, identifying common scams — such as lottery scams, fake tech support calls, and fraudulent investment schemes — and emphasises the importance of reporting cyber-crimes promptly through dedicated helplines within the crucial golden hour.

Cybercriminals Target WhatsApp Users with Fake Wedding Invitations to Install Malware

Cybercriminals have found new ways to scam people, through fake wedding invitation links leading to potential data theft and financial loss. Would you believe sending invitations via What’s App could invite a serious cyber-attack, compromising your device and personal data? Himachal Pradesh police officials have revealed that scammers have found a new type of scam: they send malicious wedding invitations through WhatsApp in the form of APK files. When recipients download these files, it compromises their device through malware that gives full access to the scammer. Once the malware is activated, hackers can use the device for their benefit, like sending messages, stealing personal data, and even extorting money without the owner’s knowledge. How does the scam work? Scammers send WhatsApp messages from unknown numbers portraying wedding invitations. The message looks legitimate, but it is a harmful APK file. Once the recipient downloads the file, a malicious application is installed on the phone that can access sensitive data, monitor activities, and hijack mobile functions. In some cases, cybercriminals can use the device to send fraudulent messages to the victim’s contacts, requesting money or sensitive information while pretending to be the phone’s owner. This sophisticated attack can lead to financial losses and personal harm. According to DIG Mohit Chawla of Himachal Pradesh, saying, “If you receive an unexpected wedding invitation or file from an unknown number, do not click on it. Always verify the sender and the nature of the file before downloading anything onto your phone.” What to do if one is victimized? In case, this unfortunate event happens to you, authorities urge you to take immediate action. It is advised to report cyber fraud by dialing 1930, a national helpline number for cybercrime, or by visiting the official government portal at https://cybercrime.gov.in to register a complaint. Cybercrimes are surging across the country and scammers are using tactics to deceive individuals. Apart from wedding invitation scams, officials warned of an increasing number of fraudulent loan offerings circulating online. These fake loans promise easy money which is designed to steal sensitive financial information leading to identity theft and financial losses. How to stay safe in the digital age? Experts advise you to stay informed and exercise caution to avoid cyber fraud. Experts say that it is advisable to refrain from downloading unsolicited files and always verify the authenticity of online communication before taking any actions. As cybercriminals become more sophisticated in their approach, awareness and vigilance are the best defenses against becoming a victim of online scams.

48 Arrested in Telangana’s Cybercrime Sweep, Uncovering 2,194 Cases Nationwide

Telangana Cyber Bureau detained 48 suspects for causing Rs 8.16 crore losses. The arrested individuals are involved in 508 cases in Telangana and 2,194 cases across India. In a significant move against cybercrime, the Telangana Cyber Security Bureau (TGCSB) recently arrested 48 suspects linked to a widespread cybercrime network. The state-wide crackdown, conducted in collaboration with local law enforcement, targeted suspects involved in 508 cases in Telangana and over 2,194 cases across India, amounting to financial losses of more than Rs 8.16 crore. The operation, initiated by the TGCSB Headquarters Police Station, involved extensive data analysis and intelligence gathering. Suspects face charges under various provisions, including the Information Technology Act, with cases involving fraudulent investment schemes, job scams, courier fraud, and other digital cons. The arrested individuals comprised 38 “mule account holders” who allowed cybercriminals to use their bank accounts for financial transfers, while 10 acted as “agents” who coordinated with these mule account holders to facilitate the illicit operations. The suspects include unemployed individuals, cab drivers, small business owners, and IT professionals, with educational qualifications ranging from secondary school to college degrees. The ages of the arrested suspects range from 20 to 55 years, and they were apprehended from various areas across Hyderabad and Telangana. In the raids, authorities seized 53 mobile phones, four laptops, five CPUs, two monitors, 18 bank passbooks, 16 checkbooks, 10 ATM cards, and a motorcycle, all believed to have been used in these cybercrime operations. The detained suspects are now under investigation by various police units. TGCSB Director Shikha Goel commended her team for their detailed planning and operation, highlighting the contributions of SP Devender Singh and Deputy Superintendents of Police KV Surya Prakash, Harikrishna, and KVM Prasad. Goel emphasized TGCSB’s commitment to enhancing cybersecurity and urged the public to be vigilant with personal information and cautious when dealing with unverified sources.

The Indian government has frozen approximately 4.5 lakh “mule” bank accounts over the past year.

The Indian government has frozen approximately 4.5 lakh “mule” bank accounts over the past year. These accounts, often opened using stolen identities, are primarily used to launder the proceeds of cyber fraud. State Bank of India, Punjab National Bank, Canara Bank, Kotak Mahindra Bank, and Airtel Payments Bank were found to have the highest number of such accounts. The Indian Cyber Crime Coordination Centre (I4C) recently informed the Prime Minister’s Office (PMO) about this alarming trend. They highlighted the evolving tactics of cybercriminals, who are increasingly resorting to cheque withdrawals, ATM transactions, and digital transfers to siphon funds from these “mule” accounts. The I4C’s analysis, based on data from the Citizen Financial Cyber Frauds Reporting and Management System, revealed a disturbing pattern. Approximately 40,000 suspicious accounts were linked to SBI, 10,000 to PNB, 7,000 to Canara Bank, 6,000 to Kotak Mahindra Bank, and 5,000 to Airtel Payments Bank. Since January 2023, the National Cybercrime Reporting Portal has registered nearly 1 lakh cyber complaints, with estimated losses exceeding Rs 17,000 crore. To address this growing threat, the government’s high-level inter-ministerial panel has identified vulnerabilities in the banking system and directed state and union territory police forces to proactively investigate and take action against “mule” account holders. Bank managers and officials involved in opening such accounts are also under scrutiny. The Reserve Bank of India and the Department of Financial Services have been instructed to implement necessary measures to strengthen security protocols and prevent future incidents. Airtel Payments Bank, in response to these concerns, emphasized its commitment to digital financial inclusion while maintaining robust security measures. The bank highlighted its real-time API integration with the I4C suspect registry, advanced AI/ML models for fraud detection, and innovative customer verification processes like Face Match to mitigate risks associated with “mule” accounts.

QR code-based citizen launched in Chandigarh review service

Chandigarh Police launched 12 November two citizen-focused initiatives — the QR code-based Citizen Review Service and Cyber Awareness Kiosks — during an event at the Multipurpose Hall, UT Secretariat. Punjab Governor and Chandigarh Administrator Gulab Chand Kataria attended as the chief guest, joined by senior officials from the Chandigarh Administration and members of Samavesh advisory committees. These initiatives, introduced by SSP Kanwardeep Kaur, mark significant steps toward improving police transparency and public cyber safety. DGP Surendra Singh Yadav welcomed the chief guest and dignitaries, thanking Kataria for his support in bringing these citizen-centric services to Chandigarh. The Citizen Review Service is designed to gather public feedback on police interactions through an easy-to-use QR code system. Citizens visiting police stations, Samavesh centres, police headquarters, and traffic lines can scan a QR code to rate their experience on factors such as police behaviour, response time, station cleanliness, honesty, and accessibility. This feedback will be collected monthly to rank police stations, with the results displayed on the Chandigarh Police website, promoting transparency and highlighting top-performing stations. The initiative empowers citizens to voice their experiences directly, allowing police to identify areas for improvement and validate service quality. The Cyber Awareness Kiosks focus on educating the public about cyber safety in an increasingly digital world. Strategically positioned in high-traffic areas such as Sector-17 Plaza, Sukhna Lake, and Elante Mall, these kiosks offer resources on cyber safety, including updates on recent cybercrime trends, practical tips for secure online behavior, and contact information for reporting cyber incidents. Through interactive modules, visitors can learn how to protect themselves from online threats such as phishing, identity theft, and online scams. The kiosks provide an accessible means for citizens to stay informed on cyber threats, helping them navigate the digital world safely. In his address, Kataria lauded Chandigarh Police for these “innovative, citizen-friendly” measures and their ongoing commitment to digital and community-oriented initiatives, such as eFIR, eBeat/eSathi, and Cyber Swachhta Mission, which bring police services closer to the public. SP (Headquarters) Ketan Bansal delivered the vote of thanks, expressing gratitude to Kataria and other officials for their support in launching these initiatives.

Union Minister Scindia Launches Call Prevention System to Shield Indians from Cyber Criminals

Another step by Department of Telecom (DoT) to protect Citizens from cyber frauds The system identifies and blocks the incoming international calls posing as Indian phone numbers System identified and blocked about 1.35 crore calls as spoofed calls in last 24 hrs, which are 90 % of all the incoming international calls Shri Jyotiraditya M. Scindia, Minister of Communications and Development of North Eastern Region today launched ‘International Incoming Spoofed Calls Prevention System’, in the presence of Minister of State for Communications & Rural Development Dr Pemmasani Chandra Sekhar. The launch ceremony was attended by Secretary Telecom and other senior officers. This is another milestone of DoT’s efforts towards building a safe digital space and protecting citizens from cyber-crime. Of late, cyber criminals have been committing cyber-crimes by making international spoofed calls displaying Indian mobile numbers (+91-xxxxxxxxx). These calls appear to be originating within India but are actually being made from abroad by manipulating the calling line identity (CLI) or commonly known as phone number. These spoofed calls have been used for financial scams, impersonating government officials, and creating panic. There have also been cases of cyber-crime threatening disconnection of mobile numbers by DoT/TRAI officials, fake digital arrests, drugs/narcotics in courier, impersonation as police officials, arrest in sex racket etc. Department of Communications (DoT) and Telecom Service (TSPs) have collaborated and devised a system to identify and block such incoming international spoofed calls from reaching the Indian telecom subscribers. The system was made operational and it has been observed that within 24 hours of operation of the system, about 1.35 crore or 90% from all the incoming international calls with Indian phone numbers were identified as spoofed calls and blocked by TSPs from reaching Indian telecom subscribers. Indian telecom subscribers should see a significant reduction in such spoofed calls with +91-xxxxxxx numbers with implementation of this system. Despite such best efforts, there could be cases where fraudsters succeed through other means. For such calls, you can help by reporting such suspected fraud communications at Chakshu facility on Sanchar Saathi (www.sancharsaasthi, gov.in). The DoT remains committed to proactively combating cybercrime. For those who have already lost money or been victims of cybercrime, please report the incident at the cybercrime helpline number 1930 or website https://www.cybercrime.gov.in