Account Hijacking (High-Follower Accounts) — How to Identify & Stay Safe

INDIA — By BharatSecure Threat Intelligence Team · Updated May 27, 2026

Severity: CRITICAL | View Full Scam Details

Beware of Account Hijacking (High-Follower Accounts) Scam in India — Stay Safe in 2026

Account hijacking targeting celebrities and influencers is a critical scam in India that puts millions at financial risk through fake crypto and investment schemes.

What Is the Account Hijacking (High-Follower Accounts)?

Account Hijacking of high-follower social media profiles is a growing cybercrime trend in India. Fraudsters aim to take over popular accounts—often belonging to Bollywood stars, top influencers, business brands, or public figures—with large follower bases. Because these accounts are trusted by millions, hackers exploit them to spread fake investment schemes, especially linked to cryptocurrencies, promising unrealistic returns.

In India, this scam has become widespread due to weaker password practices, the increasing use of WhatsApp for phishing, and prevalent SIM swap frauds affecting mobile numbers linked with Aadhaar authentication. According to CERT-In and the Indian government’s I4C (Indian Cyber Crime Coordination Centre), hijacking cases have surged, with attackers often leveraging stolen personal data and phishing messages to infiltrate these accounts.

The Reserve Bank of India (RBI) has also issued alerts reminding users how digitally trusted identities can be weaponized when linked to mobile numbers or UPI payments. As social media and crypto investing grow in popularity among Indians, this scam’s impact on financial safety has become critical to understand.

How This Scam Works — Step by Step

1. Target Selection: Fraudsters identify social media accounts with large follower bases—celebrities, influencers, or popular brands on platforms like Instagram, Twitter, or Facebook.

2. Initial Access via Phishing or SIM Swap: Attackers contact the account owner or associated mobile number with phishing messages on WhatsApp or SMS, tricking them into revealing passwords or OTPs. Alternatively, they perform a SIM swap by convincing mobile operators (sometimes through fake Aadhaar verification) to transfer the victim’s number to another SIM.

3. Account Takeover: Once they have passwords or OTPs, hackers log into the account and immediately change profile details—profile pictures, bio, linked email, or phone number—to lock out the original owner.

4. Posting Scam Messages: The hijacked account starts posting fraudulent investment messages, often promising guaranteed high returns through cryptocurrency schemes or bogus financial products.

5. Luring Followers to Transfer Money: Followers, trusting the identity of the hijacked account, click on phishing links or send money via UPI or bank transfers, believing they are investing in trusted opportunities.

6. Money is Drained: Money sent via UPI or net banking gets transferred to untraceable wallets or accounts. Because payments often appear authorized, victims find it difficult to reverse transactions.

Real Warning Signs to Watch For

• Sudden change in profile details (profile photo, bio, or contact info) of your favorite celebrity or influencer.
• Messages promising unrealistically high returns on crypto or investment schemes.
• Urgent requests for money transfers via UPI or unfamiliar payment links.
• Direct messages asking for private information like OTPs, passwords, or Aadhaar details.
• Posts with poor language, spelling errors, or unusual post timing.
• Verification tick removed or sideloaded claims instead of official announcements.
• Calls or WhatsApp messages urging immediate action with threats or pressure.

What Happens to Victims

When a high-follower account is hijacked, millions of followers can be deceived into sending money or sharing personal data. Victims suffer financial losses as their UPI or bank payments become irreversible scams. Because many Indians link their Aadhaar to mobile numbers and banking, SIM swap fraud can allow criminals to bypass two-factor authentication and drain accounts quickly.

Besides monetary loss measured in lakhs or crores of INR, victims often face stress, reputational damage, and the challenge of reclaiming hijacked online identities. Emotional distress arises as trusted figures are used to scam loved ones, causing breakdowns of trust in digital spaces.

What RBI and CERT-In Say

The RBI advises caution against unsolicited financial offers and urges users to never share OTPs or PINs, especially received via SMS or WhatsApp. The central bank has instructed banks and payment platforms like NPCI (managing UPI) to strengthen fraud detection and customer education.

CERT-In, India’s cybersecurity agency, highlights the risks of SIM swap fraud and phishing tied to Aadhaar and mobile number misuse, encouraging users to register for mobile number portability locks and use multi-factor authentication. I4C promotes awareness campaigns warning social media users against clicking suspicious links that compromise accounts.

In case of cyber frauds, the government recommends immediately calling the 1930 Cyber Crime Helpline or the RBI Banking Fraud Helpline to report and seek help.

How to Protect Yourself

1. Use Strong, Unique Passwords: Avoid reusing passwords across social media and financial services. Use a password manager if needed.

2. Enable Two-Factor Authentication (2FA): Activate 2FA on all social media accounts with an authenticator app rather than SMS OTPs to reduce SIM swap risks.

3. Avoid Clicking Links from Unknown Sources: Never click investment or crypto offers links shared in unverified social media messages.

4. Be Cautious with Mobile Number Sharing: Keep your Aadhaar-linked mobile number secure and avoid sharing SIM card details over calls or messages.

5. Monitor Account Activities Regularly: Check login history, linked emails, or phone numbers for unauthorized changes.

6. Lock SIM Portability: Request your mobile operator to enable a SIM lock to prevent unauthorized SIM swaps.

7. Verify Financial Offers Independently: Confirm investment schemes through official websites or trusted financial advisors before transferring money.

What to Do If You've Been Targeted

1. Immediately Change Your Account Passwords: Use trusted and secure devices to regain control.

2. Inform Your Mobile Operator: Report any suspected SIM swap and request a block or lock on your number.

3. Report to Cyber Crime Authorities: File a complaint on the National Cyber Crime Reporting Portal at cybercrime.gov.in or call the 1930 cybercrime helpline.

4. Alert Your Bank and UPI Provider: Inform them about unauthorized transactions to explore payment reversal options.

5. Contact Social Media Platforms: Use official support channels to recover hijacked accounts and report misuse.

6. Keep Evidence Ready: Save screenshots, phishing messages, or transaction details to assist investigations.

Frequently Asked Questions

Q: How do hackers hijack high-follower accounts so easily?
A: They exploit weak or reused passwords, send phishing links via WhatsApp, or perform SIM swaps by manipulating mobile network operators with fake Aadhaar verification. Many don’t use strong 2FA, making it easier to breach accounts.

Q: Can I recover money sent via UPI to scammers using hijacked accounts?
A: UPI transactions are generally final, but if reported promptly to your bank and through RBI helplines, there is a small chance of tracing fraudulent transfers or freezing accounts. Early reporting increases chances of recovery.

Q: How do I know if a celebrity’s account has been hijacked?
A: Warning signs include sudden changes in profile photo, bio, removal of verification badge, suspicious investment offers, and posts with poor language. Always verify from official websites or news before trusting high-return investment claims.

Stay alert and verify suspicious investment or cryptocurrency messages at BharatSecure.app — your trusted partner in fighting digital fraud in India.