Mobile Number Takeover in Deepfake KYC — How to Identify & Stay Safe
INDIA — By BharatSecure Threat Intelligence Team ·
Severity: CRITICAL | View Full Scam Details
🛡️ Want to check if you've received this scam?
Check This Scam on BharatSecure →Mobile Number Takeover in Deepfake KYC Scam 2026: A Critical Threat to Indian UPI Users
Millions of Indians are at risk from a sophisticated scam where fraudsters combine mobile number takeovers and deepfake technology to manipulate KYC verification and steal money through UPI.
What Is the Mobile Number Takeover in Deepfake KYC?
Mobile Number Takeover in Deepfake KYC is a growing financial fraud targeting Indian citizens’ bank accounts and digital wallets. The scam involves fraudsters first taking over a victim’s mobile phone number by hijacking their SIM card through telecom operators. After gaining control of the phone number, the scammers use deepfake technology—AI-generated fake video or voice mimicking the victim—to pass biometric KYC checks on digital payment apps or banking services.
This scam primarily targets individuals actively using UPI (Unified Payments Interface), mobile banking, or fintech apps requiring Aadhaar-linked e-KYC. According to public complaints reported to police and cybercrime cells, scammers are increasingly exploiting vulnerabilities in telecom verification and biometric KYC processes to bypass security.
The Indian government’s cyber response agencies like CERT-In, I4C (Indian Cyber Crime Coordination Centre), and the Reserve Bank of India (RBI) have issued advisories warning users about rising frauds combining SIM swaps with deepfake-assisted KYC misuse, emphasizing this as a critical cyber threat with a risk score of 10/10.
How This Scam Works — Step by Step
Information Gathering: Scammers collect personal details about the victim from social media platforms such as WhatsApp or Facebook. They may also use phishing messages appearing to be from banks or fintech apps, tricking victims into revealing bank account, Aadhaar, or phone details.
Mobile Number Takeover (SIM Swap): Using the gathered info, fraudsters call the mobile service provider pretending to be the victim. They request a SIM replacement citing reasons like "lost phone" or "network issues." In some reported cases, social engineering convinces telecom staff to issue a new SIM, effectively transferring the victim’s mobile number to the scammer’s device.
Deepfake KYC Verification: Once the mobile number is under control, scammers trigger biometric KYC processes on digital payment apps or bank accounts. Using AI deepfake tools, they generate a fake video or voice closely matching the victim's biometrics to clear identity verification checks remotely.
Account Control and Fraudulent Transactions: After passing the deepfake KYC, scammers gain full access to the victim’s UPI-linked bank accounts or payment wallets. They initiate transactions, often in small amounts to avoid immediate detection, draining funds or requesting multiple UPI transfers to different accounts.
Covering Tracks: To delay victims’ awareness, fraudsters disable transaction alerts or forward OTPs (One-Time Passwords) sent by banks via SMS or calls to their own devices. Victims often receive delayed or no notifications about the unauthorized activity.
Real Warning Signs to Watch For
- Unexpected loss of mobile network or sudden “No Service” on your phone without explanation
- Receiving OTPs or verification messages you did not request
- Phone calls or messages claiming to be from your mobile operator requesting personal info or SIM activation confirmation
- Video or voice verification prompts appearing on apps that seem unusual or out of ordinary usage patterns
- Unauthorized UPI payment requests or transactions from your bank account
- Changes in registered mobile number linked to Aadhaar or bank accounts without your consent
- Messages warning of account lock or needing urgent KYC verification that push for immediate action
What Happens to Victims
Financially, victims often lose thousands to lakhs of rupees via unauthorized UPI transactions or fraudulent credit lines opened using their identity. UPI’s instant, irreversible money transfers make recovery difficult. While RBI has regulations for some transaction reversals, delays in reporting mean most victims face permanent loss.
Emotionally, the scam causes significant distress and trust issues, especially when victims realize their Aadhaar and personal biometrics have been misused. The hijacking of mobile numbers can also disrupt communication, causing missed calls and important alerts. Victims may face long bureaucratic processes to reclaim access to accounts and phone numbers, compounding the trauma.
What RBI and CERT-In Say
The Reserve Bank of India has repeatedly issued advisories highlighting the risks of SIM swapping and urging banks and payment service providers to enhance multi-factor authentication beyond SMS OTPs. CERT-In emphasizes educating users about phishing, social engineering, and biometric deepfake threats, recommending vigilance on unusual KYC requests.
The Indian Cyber Crime Coordination Centre (I4C) advises users to immediately report suspected SIM swap or deepfake fraud attempts via the 1930 cybercrime helpline. Banks also maintain dedicated customer service lines to quickly block compromised accounts.
How to Protect Yourself
- Set a SIM Lock or Extra PIN at your mobile operator to prevent unauthorized SIM swaps.
- Regularly monitor your UPI and bank transaction alerts—immediately report suspicious activity.
- Do not share OTPs or personal details with anyone, even if they claim to be from banks or telecoms.
- Avoid clicking on unknown links or sharing info over WhatsApp or SMS that requests verification.
- Use app-based authenticators or biometrics where possible, rather than SMS-based OTP alone.
- Check frequently with your mobile operator if your number status changes unexpectedly.
- Register a ‘Do Not Disturb’ (DND) flag for promotional or verification SMS, reducing phishing attempts via SMS.
What to Do If You've Been Targeted
- Immediately contact your mobile service provider to block or deactivate the compromised SIM.
- Report the fraud to your bank and freeze all linked accounts or UPI IDs.
- Lodge a complaint on the official cybercrime portal — cybercrime.gov.in, providing all relevant details.
- Call the 1930 cybercrime helpline for assistance in reporting and guidance.
- Inform your Aadhaar issuing authority if you suspect misuse of biometric KYC.
- Keep digital and physical evidence like messages, call records, and transaction receipts ready for investigation.
Frequently Asked Questions
Q: Can a scammer really take over my mobile number without physically stealing my SIM?
Yes. This is called SIM swapping, where fraudsters convince telecom operators to activate your number on a new SIM using social engineering and stolen personal data.
Q: What exactly is deepfake KYC and why is it dangerous?
Deepfake KYC uses AI-generated fake videos or voices mimicking a person’s biometric traits to fool identity verification systems, allowing scammers to pass KYC remotely without physical presence.
Q: How can I tell if my mobile number has been taken over?
Signs include sudden loss of network, missing calls or SMS, OTPs on transactions you didn’t initiate, or receiving messages from your telecom operator about SIM reactivation without your request.
Verify suspicious messages or calls at BharatSecure.app and report any fraudulent activity immediately by calling 1930 to protect your money and identity.
Disclaimer: This article describes a pattern of fraud reported in public sources for public-safety awareness. It is not legal, financial, or medical advice. To request correction or removal of any content, write to hello@bharatsecure.app.
Related Scams in Our Database
- BlueDart/DTDC Parcel Scams (General SMS/WhatsApp Delivery Issues) — Severity: MEDIUM
- Phishing for Personal Information — Severity: MEDIUM
- Smishing (SMS Phishing) for Personal Information — Severity: MEDIUM
Verify Any Suspicious Message
Check any suspicious message, link, or call for free at bharatsecure.app.