Bank employee held for facilitating cyber fraud, opening fake account to siphon money in Delhi — How to Identify & Stay Safe

INDIA — By BharatSecure Threat Intelligence Team · Updated May 26, 2026

Severity: HIGH | View Full Scam Details

Bank Employee Held for Facilitating Cyber Fraud with Fake Accounts in Delhi — KYC Fraud in India 2026

A bank employee in Delhi has been arrested for opening fake accounts using forged KYC documents, enabling cybercriminals to siphon off large sums of money.

What Is the Bank Employee Held for Facilitating Cyber Fraud, Opening Fake Account to Siphon Money in Delhi?

This scam involves bank insiders, specifically employees like Relationship Managers, who misuse their privileged access to banking systems to open fake accounts for criminals. These accounts are created using forged KYC (Know Your Customer) documents—such as fake Aadhaar cards, PAN cards, or utility bills—to bypass regulatory checks. Once these fake accounts are set up, fraudsters use them as conduits for money laundering or siphoning stolen funds from unsuspecting victims.

In India, this type of scam has been growing due to the increasing digitisation of banking services combined with loopholes in identity verification processes. Data from CERT-In and the Indian Cybercrime Coordination Centre (I4C) suggest a rise in KYC-related frauds, often facilitated by insiders. While the RBI has issued multiple advisories emphasizing strengthened KYC norms and employee background verification, incidents like this Delhi case expose persistent vulnerabilities.

This scam targets not only banks but also customers whose money or credentials may be compromised indirectly. Fake accounts may be linked to fraudulent UPI transactions or used in phishing operations. Given India’s vast digital banking ecosystem, including millions of UPI users, such insider scams pose a high risk to financial security nationwide.

How This Scam Works — Step by Step

1. Recruitment or Collusion with a Bank Employee: Fraudsters identify or recruit a Relationship Manager or other bank employee who has direct access to account openings and KYC data.

2. Forging KYC Documents: Criminals create fake or stolen identity documents like Aadhaar, PAN, or address proofs.

3. Opening Fake Accounts: The bank employee uses their access to open new accounts with these forged documents, bypassing standard verification.

4. Activating Payment Instruments: Once accounts are opened, associated payment instruments like UPI IDs, debit cards, or cheques are created and activated.

5. Siphoning Money: These fake accounts are then used to channel stolen funds from victims—often through fraudulent UPI transactions—or to launder money obtained by phishing or SIM swapping.

6. Communication via WhatsApp or Phone: Scammers contact potential victims or insiders through WhatsApp, coordinating transfers or setting up “meetings” to exchange money or discuss illegal transactions.

7. Covering Tracks: The employee deletes or alters digital logs, making it harder for banks to detect the fraud immediately.

Victims only realize the fraud once significant amounts have been siphoned without their authorization. By then, it takes time to trace and freeze the fake accounts and recover lost funds.

Real Warning Signs to Watch For

• Unexpected messages from unknown contacts on WhatsApp offering “banking help” or “low-risk investments.”
• Requests from anyone (even someone claiming to be a bank official) asking for personal KYC data or OTPs via calls or messages.
• Unrecognized UPI transactions or alerts about new bank accounts or debit cards you never authorized.
• Bank employees pressuring you to share Aadhaar or PAN photos “for verification” without official communication.
• Sudden calls or texts claiming to be from your bank about account activations or changes.
• Notifications of failed transactions followed by requests to “retry” payments via alternate accounts.
• Receiving calls or messages about “bonus credits” or “loan approvals” linked to new accounts you did not open.

What Happens to Victims

Victims suffer financially when their money is routed through fake accounts without their knowledge. Since these accounts are created using stolen or forged identities, transactions often appear legitimate, delaying detection. This can lead to prolonged disputes with banks over unauthorized UPI payments or fraudulent withdrawals, with the victims bearing the initial brunt.

Emotionally, victims face distress and confusion, especially when linked Aadhaar details are misused. Misuse of Aadhaar in fake accounts can also lead to issues with credit history and difficulties in future KYC processes. In some cases, SIM swap fraud compounds the problem, enabling fraudsters to bypass OTP authentication. Victims often struggle to regain control over their accounts, and legal recourse can be slow—a harsh reality in India’s digital payment landscape.

What RBI and CERT-In Say

The Reserve Bank of India (RBI) has repeatedly emphasized strict KYC compliance and employee verification protocols to curb such frauds. RBI’s Master Directions for KYC require banks to verify customer identity through Aadhaar or other government-issued documents and maintain audit trails.

CERT-In, the national cybersecurity agency, urges vigilance against insider threats and recommends that financial institutions implement multi-factor authentication and employee background checks. The Indian Cybercrime Coordination Centre (I4C) also runs a 24x7 cybercrime helpline at 1930 for victims to report fraud.

RBI helpline numbers and grievance redressal mechanisms are available on official bank websites, ensuring customers can report suspicious transactions or employee misconduct quickly.

How to Protect Yourself

1. Do not share Aadhaar, PAN, OTP, or CVV details over WhatsApp or phone—even if the request claims to be from your bank.
2. Regularly check your bank statements and UPI app transaction history for any unrecognized activity.
3. Use the official bank app or website for all transactions and avoid clicking on links sent via WhatsApp or SMS.
4. Set transaction limits on UPI and debit cards to reduce the risk of large unauthorized payments.
5. Verify any sudden communication claiming to be your bank through official customer care numbers only.
6. Enable device-level biometric locks on banking apps for an additional security layer.
7. Inform your bank immediately if you suspect any employee misconduct or receive suspicious calls/messages.

What to Do If You’ve Been Targeted

• Immediately contact your bank’s customer care helpline to freeze your accounts and block all payment instruments linked to suspicious accounts.
• Report the fraud to the 1930 cybercrime helpline and also file a complaint at cybercrime.gov.in, India’s official cybercrime portal.
• Lodge a complaint with the local police cyber cell to document the criminal act.
• Inform UIDAI if you suspect your Aadhaar details were misused.
• Change passwords for all related banking and UPI apps and monitor your credit report for any anomalies.
• Keep all communication records (messages, call logs) that relate to the scam as evidence.

Frequently Asked Questions

Q: How can a bank employee open an account without my knowledge?
A: Some scams involve insider collusion, where employees use forged documents to create fake accounts. These accounts do not belong to you but may misuse your identity details without your knowledge.

Q: Can I get my money back if it was transferred to a fake account?
A: RBI guidelines allow banks to reverse unauthorized transactions if reported quickly. However, recovery depends on timely reporting and investigation outcomes.

Q: How do I verify if my Aadhaar details are safe?
A: You can visit the UIDAI portal to check the history of Aadhaar authentication. Regular alerts and SMS notifications from banks can help spot any unusual KYC activity.

Stay vigilant and protect yourself against scams involving bank insiders. If you receive suspicious messages or calls related to banking, verify their authenticity immediately at BharatSecure.app — your trusted partner in digital fraud awareness.