Email Electricity Disconnect Scam (Phishing Email) — How to Identify & Stay Safe

INDIA — By BharatSecure Threat Intelligence Team · Updated May 28, 2026

Severity: HIGH | View Full Scam Details

Beware of the Email Electricity Disconnect Scam in India in 2026: Protect Yourself from Phishing Emails

Electricity consumers across India are increasingly targeted by fraudulent emails threatening power disconnection unless immediate payment is made.

What Is the Email Electricity Disconnect Scam (Phishing Email)?

The Email Electricity Disconnect Scam is a phishing attack where fraudsters send fake emails mimicking local electricity boards or utility companies like Tata Power, BSES, or various state electricity distributors. These emails warn recipients that their electricity connection will be cut off immediately due to an unpaid or overdue electricity bill. The message tries to create panic by using urgent and threatening language, pushing recipients to act hastily and make payments without verifying the email’s authenticity.

Targets are usually everyday electricity consumers, including residential households and small businesses, who rely on timely email or SMS communication from their electricity providers. Though India has robust billing and payment systems such as UPI and online portals, fraudsters exploit the fear of losing power to trick victims. This scam is becoming more common in India, with several complaints received by cybercrime cells and consumer forums. In line with the Indian Computer Emergency Response Team (CERT-In) guidelines and advisories from the Indian Cyber Crime Coordination Centre (I4C), such phishing attempts are flagged as major cyber threats requiring public vigilance.

How This Scam Works — Step by Step

1. Phishing Email Sent: The scam begins when victims receive an email purporting to be from their electricity provider. The sender’s email address may look similar to official domains but often uses slight misspellings or different domain endings (e.g., .com vs .in).

2. Alarmist Message: The email states that the recipient’s electricity bill is unpaid and that the power connection will be disconnected within hours unless an immediate payment is made. The message includes threats such as legal action or penalty charges.

3. Fake Payment Link: To “resolve” the issue, the email provides a clickable link directing the user to a fraudulent payment webpage. This site may look like an official bill payment portal but is designed to steal payment details or UPI credentials.

4. Data Theft or Payment Fraud: If the victim enters their payment information, the scammers may capture UPI PINs, debit/credit card numbers, or bank login credentials. Sometimes, malware is also installed to capture Aadhaar-linked details or enable SIM swap tactics.

5. Unauthorized Transactions: Using stolen data, fraudsters can initiate unauthorized UPI money transfers or online bank transactions, leading to financial loss for victims. Victims are often unaware until they see unexplained deductions or get calls from their bank.

Real Warning Signs to Watch For

• Email sender addresses that look suspicious or do not match official utility domain names (e.g., service@tata-powerxyz.com instead of @tatapower.com)
• Urgent or threatening language pressuring immediate payment within a few hours
• Unsolicited emails without prior billing reminders or messages on official utility apps
• Payment links leading to unknown URLs that don’t start with official domains or lack HTTPS security
• Grammar or spelling mistakes, inconsistent formatting, or generic greetings like “Dear Customer”
• Unexpected requests for sensitive data such as UPI PINs, bank OTPs, Aadhaar numbers, or login credentials
• Attachments or links triggering downloads unexpectedly

What Happens to Victims

Victims of this scam often face financial losses, with unauthorized debits made via UPI apps or online banking. In some cases reported to cybercrime cells, fraudsters have used stolen data to conduct SIM swap fraud, gaining access to victims’ mobile numbers and OTPs. This can lead to a cascade of fraudulent activities beyond the initial scam.

Besides money loss measured in thousands or lakhs of INR, victims experience stress and anxiety over potential disconnection of an essential service like electricity. Recovering funds is challenging; while UPI transactions have some reversal mechanisms, many payments made to fraudsters are irrevocable. Victims often need to file police complaints and approach banks and CERT-In for assistance.

What RBI and CERT-In Say

The Reserve Bank of India (RBI) and CERT-In have repeatedly warned consumers about phishing scams exploiting essential service bills. RBI’s cybersecurity framework advises that payment authentication should never be shared over email or phone. CERT-In encourages users to verify suspicious emails by contacting the service provider directly through official channels and to report cyber incidents immediately.

Cybercrime.gov.in recommends dialling the national cybercrime helpline at 1930 to report phishing or fraud attempts. Both RBI and CERT-In stress that no legitimate service provider will demand instant bill payments via email links or ask for sensitive authentication details through unverified platforms.

How to Protect Yourself

1. Always verify the sender’s email address carefully before opening any electricity bill email.
2. Do not click links or download attachments from unknown or suspicious emails.
3. Use official electricity provider websites or mobile apps to check bills and make payments.
4. Never share UPI PINs, OTPs, Aadhaar numbers, or bank login passwords via email or phone.
5. Enable two-factor authentication (2FA) on your UPI and banking apps.
6. Regularly monitor your bank and UPI transaction statements for unknown debits.
7. Report suspected phishing emails to your electricity provider and forward suspicious emails to CERT-In.

What to Do If You've Been Targeted

• Immediately block your UPI app or bank account by contacting your bank’s customer support.
• Change passwords for your bank, email, and UPI apps.
• Report the incident on the national cybercrime portal at cybercrime.gov.in.
• Call the cybercrime helpline at 1930 to lodge a complaint and seek guidance.
• Inform your electricity provider to verify any genuine pending dues.
• File a complaint with your local police cybercrime unit if you suffer financial loss.
• Keep screenshots and email copies as evidence for investigations.

Frequently Asked Questions

Q: Can I get my money back if I pay through the fake link?
A: In most cases, payments made through phishing websites are not reversible because the transactions are unauthorized and do not go through official channels. Prompt reporting increases your chances of recovery but is not guaranteed.

Q: How can I distinguish a real electricity bill email from a fake one?
A: Official utility emails will come from verified domain names and usually include customer-specific details like your account number. They rarely demand immediate payment with threats and do not ask for sensitive information like UPI PINs or OTPs.

Q: What if I receive a call along with the email threatening disconnection?
A: Fraudsters sometimes combine phishing with vishing (phone calls). Always verify calls by contacting the electricity board’s official helpline numbers. Do not share any personal or payment information over unsolicited calls.

If you receive any suspicious messages or emails related to electricity bills, verify their authenticity on BharatSecure.app and report fraud immediately to 1930.

Disclaimer: This article describes a pattern of fraud reported in public sources for public-safety awareness. It is not legal, financial, or medical advice. To request correction or removal of any content, write to hello@bharatsecure.app.