RBI's Proposed 'Kill Switch' for Digital Payments — How to Identify & Stay Safe
INDIA — By BharatSecure Threat Intelligence Team ·
Severity: MEDIUM | View Full Scam Details
🛡️ Want to check if you've received this scam?
Check This Scam on BharatSecure →RBI’s Proposed ‘Kill Switch’ for Digital Payments Scam in India (2026): How to Spot and Stay Safe from UPI Fraud
Millions of Indians rely on UPI and digital payments daily, but scammers are now exploiting fears around RBI’s new ‘kill switch’ proposal to rob innocent users.
What Is the RBI's Proposed 'Kill Switch' for Digital Payments?
In 2026, the Reserve Bank of India (RBI) announced plans to introduce a ‘kill switch’ feature for digital payments. This function is meant to let users instantly block all their digital transactions across UPI, wallets, and linked bank accounts—helpful if your phone or UPI ID is compromised. While the intent is to enhance security, fraudsters are exploiting confusion surrounding this new system to cheat people.
This scam mainly targets the growing base of digital payments users—especially those not fully aware of RBI’s official announcements or security processes. Fraudsters use social media platforms like WhatsApp, Instagram, and phone calls to spread fear and false information, pretending they are from banks or RBI. CERT-In and the Indian Cyber Crime Coordination Centre (I4C) have flagged this scam, urging users to be cautious as it spreads across urban and semi-urban India, where digital payments are surging.
With over 8 billion UPI transactions monthly, the stakes are high. Scammers use the ‘kill switch’ storyline to trigger urgent reactions from victims, increasing chances of falling for phishing links or sharing OTPs and Aadhaar details.
How This Scam Works — Step by Step
Initial Contact: Victims receive a WhatsApp message, SMS, or a call from someone claiming to be an RBI or bank official. The message warns of “unauthorised transactions” or says the RBI’s kill switch has been activated on their UPI ID or bank account.
Creating Urgency and Fear: The scammer insists that unless the victim re-verifies details immediately, they might lose access to funds or face account freezing. Sometimes, fake websites mimicking official bank or RBI pages are shared as “proof.”
Data Collection via Phishing: Victims are asked to enter sensitive data—UPI PIN, Aadhaar number, OTPs sent to their phone—or to “verify identity” using a link. This platform captures credentials for the fraudsters.
Sim Swap or Account Takeover: With access to OTPs and Aadhaar info, scammers conduct SIM swap attacks or request unauthorized UPI transactions from victim accounts.
Money Transfer: Scammers immediately transfer money to their controlled accounts via UPI apps, making retrieval difficult as UPI transactions are mostly irreversible.
Blocking Communication: After stealing funds, scammers cut off contact by blocking victims on WhatsApp or stopping calls.
Real Warning Signs to Watch For
- Messages or calls demanding immediate action or verification to avoid account freeze.
- Any request to share UPI PIN, OTP, Aadhaar details, or bank passwords.
- Links directing to websites that look like RBI or bank portals but have misspellings or non-secure URLs (no HTTPS).
- Callers or messages from numbers not officially listed by your bank or RBI.
- Threats that your account will be “killed” or “disabled” unless you comply immediately.
- Unsolicited communication via social media platforms rather than official bank channels.
- Any request to download apps or software from unknown sources claiming to activate/deactivate the ‘kill switch.’
What Happens to Victims
Victims might lose thousands or even lakhs of rupees, often drained fast via UPI transactions without a chance to reverse payments. Unlike traditional bank fraud, UPI payments are near-instant and usually non-reversible, making redemption tricky.
Beyond financial loss, victims suffer emotional distress, anxiety, and mistrust in digital payment systems. The misuse of Aadhaar details and SIM swap incidents also risk long-term privacy violations and identity theft, potentially compromising other financial accounts or government services linked to Aadhaar.
In many cases, victims approach their bank or local cybercrime cells only after losing money, by which time scammers are out of reach.
What RBI and CERT-In Say
RBI has officially cautioned users not to share confidential information such as UPI PIN or OTPs under any circumstance. In their 2026 advisory, RBI clarified that the ‘kill switch’ feature will be implemented through secure bank apps only and never via phone calls or WhatsApp messages.
CERT-In stresses vigilance, urging users to verify any payment-related communications through official bank channels or RBI websites. The Indian Cyber Crime Coordination Centre (I4C) continues to monitor such scams and advises reporting suspicious messages promptly to help track fraud networks.
If you suspect fraud, dial RBI helpline at +91-22-2657 3910 or the national cybercrime helpline at 1930 without delay.
How to Protect Yourself
- Always verify any message or call claiming to be from RBI or banks by contacting your official bank helpline directly.
- Never share OTPs, UPI PIN, Aadhaar numbers, or passwords on calls, SMS, WhatsApp, or suspicious websites.
- Access RBI’s kill switch feature only through your bank’s official UPI app or website, never via external links.
- Use updated anti-virus and security apps on your smartphone.
- Report any suspicious social media profiles or messages immediately.
- Enable multi-factor authentication (MFA) on your UPI apps where available.
- Keep track of your bank and UPI transactions regularly to spot unauthorized payments early.
What to Do If You’ve Been Targeted
- Immediately contact your bank and request to block your UPI ID and linked accounts to prevent further loss.
- File a complaint online at cybercrime.gov.in, providing all details such as messages, caller IDs, and transaction records.
- Report the incident to the national cybercrime helpline 1930 and your local police station.
- If a SIM swap attack is suspected, visit your telecom operator immediately to block unauthorized SIMs and re-activate your original SIM.
- Inform CERT-In or your bank about the phishing website or scam tactics you encountered to help them strengthen monitoring.
Frequently Asked Questions
Q: Can RBI call me directly about the kill switch on my phone?
No. RBI does not make unsolicited calls or send messages asking for your personal or banking information. Any such communication is likely a scam.
Q: Can I reverse a UPI transaction done by scammers?
UPI transactions are usually instant and cannot be reversed automatically. You must report the fraud immediately to your bank and the cybercrime helpline to try to recover funds.
Q: How can I safely activate the RBI kill switch if needed?
Use only your bank’s official UPI app or website to activate the kill switch feature. Never click on links received via WhatsApp, SMS, or calls asking you to activate it.
Digital payments are convenient but require constant vigilance against scams like the RBI kill switch fraud. If you ever receive suspicious messages or calls about this or any other payment-related alert, verify them immediately at BharatSecure.app. Stay safe, stay informed!
Related Scams in Our Database
- Cyber cops start scanning mule account holders; register 15 cases — Severity: MEDIUM
- RBI brings cross border transactions under e-mandate rules, allows customer to opt out anytime — Severity: MEDIUM
- From trusted persons to kill switch: 6 ways how RBI is planning to safeguard your online payments — Severity: MEDIUM
Verify Any Suspicious Message
Check any suspicious message, link, or call for free at bharatsecure.app.