Micro-Splitting Fraud (Fund Exfiltration) — How to Identify & Stay Safe

INDIA — By BharatSecure Threat Intelligence Team · Updated May 28, 2026

Severity: HIGH | View Full Scam Details

Micro-Splitting Fraud (Fund Exfiltration) in India 2026: A Hidden Danger to Your UPI Account

Micro-Splitting Fraud is a sneaky new type of scam stealing small amounts repeatedly from UPI accounts, often going unnoticed until it’s too late.

What Is the Micro-Splitting Fraud (Fund Exfiltration)?

Micro-Splitting Fraud — also called Fund Exfiltration — is a method used by scammers to withdraw money in many small transactions rather than all at once. This technique helps fraudsters avoid triggering alerts or transaction limits set by Indian banks and UPI payment apps. Because each withdrawal is tiny, most victims don’t notice the loss for days or even weeks.

This scam primarily targets everyday UPI users in India, who use the platform for payments, bill settlements, and money transfers. Since UPI is integrated with over 100 banks and handles billions of INR daily, scammers see it as a lucrative channel to siphon off funds stealthily. According to cybercrime reports filed with the Indian government and advisories from CERT-In and the Indian Cyber Crime Coordination Centre (I4C), cases of micro-splitting fraud are on the rise, highlighting the urgent need for UPI users to stay vigilant.

The Reserve Bank of India (RBI) and CERT-In have issued general warnings about UPI-related frauds involving unauthorized transactions and urged users to protect their UPI PIN and OTPs aggressively. While no dedicated advisory exists solely for micro-splitting fraud, it falls under ongoing RBI guidelines to monitor small, frequent transactions suspiciously and report discrepancies promptly.

How This Scam Works — Step by Step

1. Initial Contact: The victim receives a convincing WhatsApp message or phone call pretending to be from their bank, Aadhaar service, or a payment app. The caller may claim there is a problem with the victim’s account or pending verification.

2. Phishing for Information: The fraudster asks the victim to share sensitive info, commonly the UPI PIN, OTP sent via SMS, or Aadhaar authentication details. Sometimes, they trick victims into clicking fake links or apps that harvest credentials.

3. Limited Access Gained: With just partial access—usually the UPI PIN and OTP—the scammers do not make one large transaction. Instead, they initiate multiple small fund transfers, each just below RBI or bank alert limits to remain undetected.

4. Multiple Micro-Transactions: Over days or weeks, numerous small transactions (e.g., Rs. 50, Rs.100, Rs.150) are made to fraudulent accounts. These micro-splits avoid triggering immediate blocking or buyer suspicion.

5. Delayed Realisation and Exploitation: Victims often only realize money is missing when reviewing statements in detail or receiving alerts on low balances.

6. Possible Account Manipulation: In some cases, fraudsters combine this with SIM swapping or Aadhaar misuse to extend access, making it harder for victims to block transactions or reclaim funds quickly.

Real Warning Signs to Watch For

• Unexpected messages or calls claiming to be from banks or Aadhaar asking for UPI PIN or OTP.
• Multiple small debit alerts from UPI apps or bank SMS not initiated by you.
• Repeated verification requests on WhatsApp or phone with urgent language.
• Links in messages asking for immediate login or Aadhaar authentication.
• Unfamiliar UPI payment requests, even for tiny amounts.
• Sudden reduction in bank balance with no large transaction alerts.
• Changes in your registered mobile number usage (possible SIM swap).

What Happens to Victims

Victims face financial losses that can accumulate to thousands of rupees before detection. Since micro-splitting fraud avoids large one-time withdrawals, victims may overlook the smaller debits initially. For many Indians relying on UPI for daily expenses or remittances, these losses cause immediate hardship.

Emotionally, victims experience stress, helplessness, and loss of trust in digital payments. If the scam involves Aadhaar misuse or SIM swap attacks, victims can face long-term issues such as difficulty regaining control over their accounts or identity theft risks.

Reversals on UPI transactions are often difficult when passwords or OTPs were shared voluntarily due to social engineering tricks. The RBI mandates customer liability protection only up to reporting time; delayed complaints can reduce chances of fund recovery.

What RBI and CERT-In Say

RBI regularly updates its guidelines on customer awareness and liability in digital payment frauds, emphasizing prompt reporting of unauthorized transactions. It asks users never to share UPI PINs, OTPs, or passwords, and to register complaints with their banks immediately upon spotting suspicious activity.

CERT-In (cert-in.org.in) stresses cyber hygiene, warning against clicking unknown links or sharing sensitive details on calls or WhatsApp. The Indian Cyber Crime Coordination Centre (I4C) encourages filing complaints at cybercrime.gov.in and availing the 1930 helpline for cyber frauds.

For UPI fraud-related concerns, you can also reach the RBI Customer Helpline and report through respective banking apps or websites.

How to Protect Yourself

1. Never share your UPI PIN or OTP with anyone—not even those claiming to be bank officials.
2. Ignore calls or messages asking for Aadhaar authentication or account verification over WhatsApp.
3. Set transaction limits and alerts for your UPI and bank accounts.
4. Regularly check your UPI app and bank statements for small, unauthorized debits.
5. Use app locks or biometric security on payment apps to prevent unauthorized access.
6. Register for mobile number SMS alerts for all transactions.
7. Immediately contact your bank and UPI app support if you notice unknown transactions.

What to Do If You've Been Targeted

• Call your bank’s official customer service immediately to block UPI transactions and freeze your account if possible.
• Report the fraud on the national cybercrime portal (cybercrime.gov.in) or call the 1930 cybercrime helpline.
• Inform your mobile service provider if you suspect SIM swap or loss of control over your mobile number.
• File a detailed complaint with your local police cyber cell to create an official record.
• Change all your important passwords, PINs, and linked mobile numbers for digital services.
• Keep screenshots and transaction details saved for follow-up investigations by authorities.
• Monitor your bank and UPI apps continuously for further unauthorized activity.

Frequently Asked Questions

Q: How is Micro-Splitting Fraud different from normal UPI fraud?
A: Unlike single large fraudulent transactions, micro-splitting fraud uses many small transfers to fly under the radar of alert systems and user suspicion, making it harder to detect early.

Q: Can I get my money back if this scam happens to me?
A: Recovery depends on how quickly you report the fraud to your bank and authorities. RBI guidelines require users to inform banks promptly for possible refunds, but voluntary sharing of PIN/OTP complicates claims.

Q: How do scammers get my UPI PIN or OTP in the first place?
A: Most victims are tricked through phishing on WhatsApp or calls impersonating bank or Aadhaar officials, asking for confidential details or sending fake links to capture credentials.

If you receive suspicious messages or calls about your bank or UPI account, verify their authenticity immediately at BharatSecure.app and report suspected fraud to the 1930 cybercrime helpline.

Disclaimer: This article describes a pattern of fraud reported in public sources for public-safety awareness. It is not legal, financial, or medical advice. To request correction or removal of any content, write to hello@bharatsecure.app.