ED 'Account Verification' Remote Access Scam — How to Identify & Stay Safe

INDIA — By BharatSecure Threat Intelligence Team · Updated May 29, 2026

Severity: HIGH | View Full Scam Details

Beware the ED 'Account Verification' Remote Access Scam in India 2026: Protect Your UPI and Bank Accounts

In 2026, Indian internet users face a rising fraud threat where scammers impersonating Enforcement Directorate (ED) officials use remote access tactics to steal money via UPI and WhatsApp.

What Is the ED 'Account Verification' Remote Access Scam?

The ED 'Account Verification' Remote Access Scam is a sophisticated fraud targeting individuals across India by exploiting fears related to law enforcement investigations. Scammers claim to be officials from the Enforcement Directorate or similar government bodies conducting urgent inquiries into alleged suspicious transactions linked to the victim’s bank accounts, often citing violations of anti-money laundering laws.

Typically, these fraudsters reach out through unsolicited WhatsApp messages or phone calls, leveraging personal details—possibly obtained from previous data breaches or social engineering—to appear credible. This scam mainly targets digitally active bank customers who use UPI apps and mobile banking. Given India’s growing digital payment ecosystem, it has led to a notable surge in reported complaints to cybercrime cells throughout the country since early 2025.

While there is no official RBI or CERT-In advisory specifically naming this scam to date, both agencies warn about phishing and social engineering scams that use remote access tools to compromise mobile devices. The Indian Cyber Crime Coordination Centre (I4C) also highlights rising cases involving impersonation of government officials to defraud unsuspecting citizens. Users should consider these warnings seriously.

How This Scam Works — Step by Step

1. Initial Contact: Victims receive an unexpected WhatsApp message or call from a number claiming to represent the ED. The caller often uses known personal data to make the communication appear legitimate.

2. Urgent Claim: The fraudster alleges that the victim’s bank account is under investigation for unlawful transactions, sometimes implying links to money laundering or illegal fund transfers.

3. Creating Panic and Trust: The caller stresses that immediate cooperation is needed to avoid jail or seizure of assets, generating fear and urgency.

4. Remote Access Request: The scammer asks the victim to install a remote access app (such as AnyDesk, TeamViewer, or lesser-known alternatives) on their phone or computer to “verify account details.”

5. Capturing Sensitive Info: Once remote control is granted, the fraudster navigates the victim’s device to steal UPI PINs, OTPs, bank passwords, or Aadhaar-linked documents.

6. Unauthorized Transactions: Using the stolen credentials, scammers initiate UPI fund transfers, often to multiple accounts or wallets, causing significant financial loss before the victim realizes.

7. Cutting off Contact: After draining funds, the fraudster disconnects, and the victim is locked out or confused about the source of the transactions.

Real Warning Signs to Watch For

• Unsolicited calls or WhatsApp messages from persons claiming to be ED officials demanding immediate verification.
• Requests to install remote access or screen-sharing apps on your device.
• Insistence on sharing UPI PINs, OTPs, or Aadhaar details over call or chat.
• Threats of legal action or arrest if you don’t comply quickly.
• Use of personal information that the caller should not legitimately know.
• Pressure to act urgently without time to verify or consult others.
• Communication from unverified phone numbers and reluctance to provide official ID or contact details.

What Happens to Victims

Victims often experience immediate financial loss as scammers exploit UPI’s instant payment system, which lacks easy reversal once a transaction is completed. The fraud can also trigger unauthorized changes to Aadhaar-linked bank accounts or SIM swap fraud, further jeopardizing victims’ control over their digital identity and finances.

The emotional impact includes stress, fear of harassment by authorities, and a loss of trust in digital payment platforms. Victims may face lengthy disputes with banks and digital platforms to recover stolen funds, with no guaranteed success. Many find these events disrupt their daily lives and cause anxiety about future online safety.

What RBI and CERT-In Say

The Reserve Bank of India has continuously warned consumers to guard against phishing and impersonation scams that lead to account takeovers. It advises never to share OTPs, UPI PINs, or passwords with anyone. CERT-In regularly issues alerts about social engineering threats and advises users to avoid installing unknown remote access software or sharing device control with untrusted parties.

India’s 1930 cybercrime helpline and cybercrime.gov.in portal provide official channels to report such frauds. I4C also recommends vigilance against scammers claiming to be from government agencies, emphasizing that genuine government officers do not demand confidential banking details remotely.

How to Protect Yourself

1. Do not respond to unsolicited calls or messages claiming to be from ED or any government agency asking for your bank or Aadhaar details.
2. Never install remote access apps or share screen access with unknown contacts, no matter how official they sound.
3. Keep your UPI PINs, OTPs, passwords, and Aadhaar-related information strictly private.
4. Verify any suspicious call by independently contacting the official phone numbers of the claimed agency before complying.
5. Enable two-factor authentication on your bank and UPI apps for added security.
6. Regularly check your bank statements and UPI transaction history for unauthorized activity.
7. Register your mobile number on the Do Not Disturb (DND) list to reduce unsolicited calls.

What to Do If You've Been Targeted

• Immediately block the caller and do not respond further.
• Change all your banking and UPI passwords and PINs without delay.
• Contact your bank or UPI provider to report the fraudulent transactions and request a block or freeze on your account.
• File a complaint on the cybercrime.gov.in portal or call the 1930 cybercrime helpline to report the fraud.
• Inform your mobile operator in case you suspect SIM swap fraud for additional safety.
• Consider filing a police report to document the incident for legal or recovery processes.

Frequently Asked Questions

Q: Can genuine ED officials call me to verify my bank account details over the phone?
A: No legitimate ED officer will ask you for sensitive information, UPI PINs, or remote access to your phone via unsolicited calls or messages. All official communication follows formal written processes.

Q: What if I accidentally shared my OTP or PIN with a caller claiming to be from ED?
A: Immediately contact your bank and block your account or card. Report the incident to cybercrime authorities through the 1930 helpline or cybercrime.gov.in and change all passwords.

Q: How can I check if my phone has been compromised by a remote access app?
A: Look for apps you did not install, unusual device behaviour, rapid battery drain, or permission requests for screen sharing. Uninstall suspicious apps immediately and run security scans.

For any suspicious message or call related to ED claims or account verification, always verify on BharatSecure.app and promptly report frauds by calling 1930.

Disclaimer: This article describes a pattern of fraud reported in public sources for public-safety awareness. It is not legal, financial, or medical advice. To request correction or removal of any content, write to hello@bharatsecure.app.