RBI's Proposed 'Kill Switch' for Digital Payments — How to Identify & Stay Safe

INDIA — By BharatSecure Threat Intelligence Team · Updated May 12, 2026

Severity: MEDIUM | View Full Scam Details

RBI's Proposed 'Kill Switch' Scam on Digital Payments in India 2026: Beware UPI Frauds

Scammers are exploiting fears around the RBI’s planned digital payments “kill switch” to trick millions of Indians into sharing OTPs and Aadhaar details, putting your money at risk.

What Is the RBI's Proposed 'Kill Switch' for Digital Payments?

The Reserve Bank of India (RBI) recently announced plans for a “kill switch” feature aimed at protecting users of digital payments like UPI, Net Banking, and mobile wallets. This mechanism would allow customers to temporarily disable all digital payment modes on their bank accounts in case of suspected fraud or unauthorized transactions. The idea is to give users quick control to stop hacker attacks and unauthorized fund transfers. While this kill switch is still under development and not yet live nationwide, scammers have jumped on the news to create fear and confusion.

Cybercriminals target anyone who uses UPI or digital payment apps, from daily wage earners paying shopkeepers digitally, to salaried professionals transferring money via apps like PhonePe, Google Pay, or Paytm. With over 10 billion UPI transactions monthly across India, criminals see a huge pool of potential victims.

The Indian Computer Emergency Response Team (CERT-In), along with the Indian Cyber Crime Coordination Centre (I4C), has issued alerts about scammers impersonating bank officials related to the kill switch. These warnings emphasize that the RBI does not call or message customers asking for sensitive information like OTPs or Aadhaar details to activate such features.

How This Scam Works — Step by Step

1. Initial Contact via WhatsApp or Phone Call: The scam usually starts with a message or call claiming to be from your bank or a government authority, warning you about suspicious digital transactions or a need to activate the RBI’s “kill switch” feature to protect your account.

2. Impersonation and Personalization: Using information from social media or prior data breaches, scammers personalize their messages, for example, “We detected a failed UPI transaction of ₹5,000 on your account ending XXXX5678.”

3. Psychological Pressure: The scammer creates urgency or fear, saying your account may be blocked or frozen unless you verify details immediately.

4. Request for Sensitive Information: They ask the victim to share OTPs received on SMS, UPI PIN, Aadhaar number, or even urge the victim to install remote access apps claiming it’s “mandatory” to enable the kill switch.

5. Money Transfer or Account Takeover: Once equipped with OTPs or UPI PINs, scammers quickly initiate unauthorized fund transfers or change SIM card settings via SIM swap to intercept OTPs and drain bank accounts.

6. Disappearance: After money is stolen, scammers cut communication. Victims realize the fraud hours or days later, often when checking bank balance or receiving transaction failure alerts.

Real Warning Signs to Watch For

• You receive urgent messages about a “kill switch” from unknown or unofficial numbers.
• Calls or messages pressure you to share OTPs, PINs, or Aadhaar details immediately.
• The “bank official” asks you to install apps like TeamViewer or AnyDesk.
• The message or call references recent transactions you did not make.
• The sender’s phone number or WhatsApp account is new, has few contacts, or is a random series of digits.
• You are asked to confirm login credentials or passwords over call or text.
• Official banking communications never ask for OTPs or PINs—any such request is fake.

What Happens to Victims

Victims lose money directly from their bank accounts, often ranging from a few thousand to lakhs of rupees. Since UPI payments are instant and irreversible, such fraudulent transfers are difficult to recover quickly. Many victims also find their Aadhaar number misused for identity theft, leading to unauthorized SIM swaps or new account openings.

Emotionally, people feel helpless, betrayed, and vulnerable. The trauma of financial loss coupled with a long recovery process reported to banks and police can be overwhelming. Reports filed late or without prompt RBI notification often delay refunds. Social stigma and fear of acknowledging the scam also prevent victims from sharing their story early.

What RBI and CERT-In Say

RBI has issued official statements warning customers against sharing OTPs, UPI PINs, or Aadhaar details with anyone, emphasizing that the bank or RBI will never call to activate features like a kill switch. RBI’s helpline (1800-22-0058) is available for queries.

CERT-In has circulated advisories on the rise of digital payment frauds leveraging UPI and WhatsApp, urging users to verify any unsolicited message before acting. The central cybercrime helpline, 1930, helps victims report incidents and seek guidance.

The Indian Cyber Crime Coordination Centre (I4C) actively coordinates with banks and telecom operators to mitigate SIM swap fraud, an increasingly common component of these scams.

How to Protect Yourself

1. Never share your OTP, UPI PIN, or Aadhaar details over phone or WhatsApp.
2. Do not install apps or click links sent by unknown numbers claiming to be from banks or RBI.
3. Verify any suspicious call or message by contacting your bank’s official helpline directly.
4. Enable two-factor authentication (2FA) on your payment apps and use app locks.
5. Regularly monitor your bank statements and UPI transaction history for unauthorized entries.
6. Keep your Aadhaar linked mobile number secure and avoid SIM swap requests without verification.
7. Stay updated on RBI advisories and CERT-In warnings via official websites and BharatSecure.app.

What to Do If You've Been Targeted

If you suspect you’ve been scammed:

• Immediately block your UPI payment method via your bank app.
• Contact your bank’s customer service and report the fraud—use RBI helpline 1800-22-0058.
• Lodge a complaint with your local cybercrime police station or file it online at cybercrime.gov.in.
• Call the national cybercrime helpline 1930 for assistance and guidance.
• Inform your telecom operator immediately if you suspect SIM swap fraud.
• Change all your passwords for banking and email accounts.
• Keep evidence—screenshots, call recordings, and transaction details—to support your case.

Frequently Asked Questions

Q: Does RBI really call customers to activate the kill switch?
No. RBI does not make unsolicited calls or messages requesting OTPs or Aadhaar data to enable any feature. Any such call or message is a scam.

Q: Can I reverse a fraudulent UPI transaction?
UPI transactions are usually instant and cannot be reversed easily. Promptly reporting the fraud to your bank and cybercrime authorities increases chances of recovery but is not guaranteed.

Q: How can I verify if a message about the kill switch is genuine?
Never trust messages asking for sensitive info. Contact your bank using official numbers, check RBI’s announcements on their website, or verify suspicious messages at BharatSecure.app.

When you receive any message or call about digital payment safety, don’t rush. Verify every detail before sharing personal info. Protect your money and identity by staying alert. Visit BharatSecure.app anytime to check if a message is a scam — because your digital safety is our mission.