Fake Vendor Payment Account Change Scam — How to Identify & Stay Safe

INDIA — By BharatSecure Threat Intelligence Team · Updated May 29, 2026

Severity: HIGH | View Full Scam Details

Beware the Fake Vendor Payment Account Change Scam in India 2026: A Rising UPI WhatsApp Threat

This new scam targeting businesses and suppliers on UPI via WhatsApp is causing heavy financial loss across India in 2026.

What Is the Fake Vendor Payment Account Change Scam?

The Fake Vendor Payment Account Change Scam is a sophisticated cyber fraud exploiting business payment processes in India. Fraudsters impersonate a genuine vendor or supplier and falsely inform the victim — usually a company’s accounts department or payment team — that their bank account details have changed. They send new UPI IDs or bank account numbers via WhatsApp or email, asking for urgent payment to be directed there.

This scam primarily targets small to medium Indian enterprises (SMEs) and large organizations relying heavily on UPI and digital payments for vendor settlements. In reported cases to police and cybercrime cells, victims have transferred substantial INR amounts to fraudulent accounts before realizing the deception. According to advisories from RBI and CERT-In, such scams have increased sharply amid growing UPI adoption and remote work culture.

Government agencies like the Indian Cyber Crime Coordination Centre (I4C) are actively monitoring this trend. The scam is widespread in metro and tier-2 cities where digital payment transactions between companies and vendors are high, making it a critical threat for Indian businesses in 2026.

How This Scam Works — Step by Step

1. Reconnaissance and Target Identification: The fraudster identifies an organization’s finance or procurement team using LinkedIn, corporate websites, or leaked databases.

2. Impersonation and Contact Initiation: Scammers pose as the vendor’s representative, often using a WhatsApp number similar to the genuine contact or by hacking official emails.

3. Communication of Account Change: The fraudster sends a WhatsApp message or email claiming the vendor’s payment account has changed due to "bank upgrades" or "internal issues" and shares new UPI IDs or account details.

4. Urgent Payment Request: The message stresses urgency and confidentiality to discourage verification, requesting immediate payment to the new account.

5. Payment by the Victim: The company’s accounts payable team transfers funds via UPI or NEFT to the fraudulent account. Because UPI transactions are near instant and irreversible, losses mount quickly.

6. Cover-Up and Silence: After payment, the scammer goes silent or claims payment took time to reflect. Meanwhile, the actual vendor tries to contact the company about missed payments.

7. Detection and Reporting: Victims discover the fraud only after reconciling accounts or vendor follow-ups — often too late to reverse money.

Real Warning Signs to Watch For

• Vendor suddenly provides new bank account or UPI ID via WhatsApp or email without prior notice.
• Messages urging immediate payment with threats of delayed delivery or penalties.
• Contact numbers or email IDs that are similar but not exactly the official vendor contacts (small spelling differences).
• Requests to keep the change confidential or not to mention to finance heads.
• No official documentation or formal communication on company letterhead backing the account change.
• Urgent emails or WhatsApp messages coming outside normal working hours.
• Vendor complaints about missing payments despite bank confirmation of transfer completion.

What Happens to Victims

Victims of this scam often face heavy financial losses running into several lakhs or crores of INR due to the rapid and irreversible nature of UPI payments. Unlike credit card payments, UPI transactions cannot be disputed or refunded easily once confirmed. This leaves companies financially exposed with little recourse.

The emotional toll is significant: business trust erodes, vendor relationships sour, and employees responsible for payments face stress and blame. Fraud also disrupts cash flow critical for SMEs, risking operational shutdowns.

In some cases, stolen identity data like leaked contact details or email logins facilitate these scams — causing wider exposure. SIM swapping used by fraudsters to hijack vendor phone numbers adds another layer of risk, making verification challenging.

What RBI and CERT-In Say

The Reserve Bank of India (RBI) has repeatedly warned users and companies to verify payment instructions carefully before processing changes, emphasizing the finality of UPI transactions. CERT-In (Indian Computer Emergency Response Team) has published alerts on social engineering scams targeting UPI users and urged immediate reporting of suspicious activity.

The 1930 national cybercrime helpline encourages victims and businesses to report such fraud for faster containment and investigation. RBI's Customer Education and Protection Department also advises companies to establish multi-level authorization and verification systems for vendor payment changes.

According to I4C, increasing awareness, use of strong authentication practices, and timely reporting have been key in curbing damages from this scam category.

How to Protect Yourself

1. Always confirm vendor account changes by calling known official numbers listed on prior official documents — never rely solely on messages.
2. Implement dual or multi-level approvals within finance teams for all account detail updates.
3. Check for discrepancies in WhatsApp numbers or email addresses—look for minor spelling differences.
4. Request formal written communication on company letterhead for any payment related changes.
5. Train staff regularly to spot social engineering and verify payment instructions independently.
6. Use UPI verification features (like verifying recipient name before sending) vigilantly.
7. Avoid making urgent payments without proper internal checks, no matter the pressure.

What to Do If You've Been Targeted

• Immediately stop all pending payments related to the vendor until a full verification is done.
• Contact your bank or payment service provider to check if transactions can be frozen or reversed.
• Report the fraud to local police and file an FIR with details of the scam.
• File a complaint on the official cybercrime portal at cybercrime.gov.in.
• Call the 1930 National Cyber Crime Helpline for support and guidance.
• Inform your IT and finance departments to audit communications and secure email/WhatsApp channels.
• Monitor your accounts regularly for any suspicious activity and update credentials.

Frequently Asked Questions

Q: Can UPI payments made to a fake vendor account be reversed?
A: Generally, UPI transactions are instant and irreversible once successful. Banks can only assist if the transaction is flagged immediately before settlement. Hence, verification before payment is crucial.

Q: How do scammers get access to vendor contact information?
A: Fraudsters use public sources like LinkedIn, company websites, or leaked data from phishing or data breaches. Some cases involve SIM swapping or email hacking to mimic genuine vendor contacts.

Q: What official help is available if I fall victim to this scam?
A: Contact your bank immediately to report the transaction. File a complaint with local police and the 1930 cybercrime helpline. Report the case at cybercrime.gov.in for investigation and support.

Protect yourself and your business by verifying every vendor payment change carefully. If you receive suspicious messages or calls, verify immediately at BharatSecure.app and report fraud attempts to 1930.

Disclaimer: This article describes a pattern of fraud reported in public sources for public-safety awareness. It is not legal, financial, or medical advice. To request correction or removal of any content, write to hello@bharatsecure.app.