Scammers cast phishing nets wide in Hormuz with promises of safe passage for ships — How to Identify & Stay Safe

INDIA — By BharatSecure Threat Intelligence Team · Updated May 01, 2026

Severity: MEDIUM | View Full Scam Details

Hormuz Phishing Scam: Safe Passage Promises Trick Indian Shipping in 2026

Indian maritime businesses are being targeted by sophisticated phishing scams in the Hormuz Strait, promising safe passage while stealing valuable data and money.

What Is the Scammers cast phishing nets wide in Hormuz with promises of safe passage for ships?

This scam targets Indian shipping companies and maritime personnel operating in or passing through the Hormuz Strait, a critical waterway for global trade. Criminals are using sophisticated phishing techniques to impersonate legitimate maritime authorities or well-known shipping companies. These fraudulent communications, delivered via email and social media, often promise guaranteed safe passage through the Strait in exchange for sensitive information or upfront payments. They prey on the understandable anxiety about piracy, geopolitical instability, and the high costs of delays in this crucial shipping lane. The scale of this scam is growing, with increasing reports from Indian-owned or operated vessels encountering these deceptive schemes. While specific official advisories addressing this exact scam are yet to be issued by RBI or CERT-In, both organizations routinely warn about the dangers of phishing and online fraud, advising users to exercise extreme caution when dealing with unsolicited communications requesting personal or financial information. The Indian Cyber Crime Coordination Centre (I4C) also emphasizes the need to verify the authenticity of online requests, particularly those involving financial transactions.

How This Scam Works — Step by Step

The fraudsters follow a carefully crafted plan to ensnare their victims:

1. Initial Contact: Scammers send emails or social media messages (often via LinkedIn or WhatsApp groups frequented by maritime professionals) that appear to be from legitimate maritime authorities, shipping agencies, or even government entities related to maritime security.
2. Sense of Urgency: The message will typically create a sense of urgency or fear. For example, they might claim there is a new high-risk piracy zone or updated safety protocols that require immediate compliance.
3. Information Request: The communication will then request sensitive information such as ship registration details, crew lists (including passport numbers and Aadhaar details), cargo manifests, or banking information for supposed "verification" or "registration" purposes.
4. Payment Request: Often, the scam includes a demand for a fee to ensure safe passage, clearance, or expedited handling of paperwork. These payments are usually requested via untraceable methods like cryptocurrency or through dubious UPI IDs. Scammers might subtly pressure victims, suggesting delays or safety risks if the "fee" isn't paid promptly.
5. Data Theft & Extortion: Once the information and/or payment are received, the scammers can use the stolen data for various purposes. They might sell it on the dark web, use it to commit identity theft, or even directly extort the shipping company by threatening to disclose sensitive cargo information or fabricate security breaches.

Real Warning Signs to Watch For

• Unsolicited Communication: Be wary of any unexpected emails or messages claiming to offer guaranteed safe passage or requiring immediate action.
• Poor Grammar & Spelling: Check for inconsistencies in language, grammar, and spelling errors, as these are common indicators of phishing attempts, even if they're getting more sophisticated.
• Unofficial Channels: Legitimate maritime authorities rarely conduct important business through social media or unsecured email.
• Pressure Tactics: Scammers often try to rush you into making a decision without giving you time to verify the information.
• Requests for Sensitive Information: Never share sensitive financial or personal information (e.g., bank account details, Aadhaar numbers, passport copies) over email or unverified platforms.
• Unusual Payment Methods: Be suspicious of requests for payments via cryptocurrency, unknown UPI IDs, or other unconventional methods. Legitimate shipping transactions usually occur through established banking systems
• Domain Name Discrepancies: Closely inspect the sender's email address and the website URL. Scammers often use slight variations of legitimate domain names to trick you (e.g., "shipping-authority.org" instead of "shippingauthority.org").

What Happens to Victims

The consequences of falling victim to this scam can be severe. Indian shipping companies can suffer significant financial losses due to the fraudulent payments. More concerningly, the stolen data can be used for identity theft, leading to fraudulent loans, SIM swaps, or even the compromise of critical ship systems if onboard personnel are targeted. The emotional distress caused by these scams is also considerable, as victims feel a sense of betrayal and vulnerability. Furthermore, the company's reputation can be tarnished, leading to a loss of trust from clients and partners. There is the added potential for regulatory penalties if compromised information leads to the breach of international shipping regulations. Reversing UPI payments after falling for a scam is often difficult and depends on the swiftness of reporting to banks and authorities.

What RBI and CERT-In Say

RBI frequently issues warnings about phishing scams and advises users to be cautious of unsolicited emails or calls asking for personal or financial information. CERT-In also provides regular security advisories on its website, urging users to update their software, use strong passwords, and enable two-factor authentication. While specific advisories may not directly address this Hormuz Strait scam, their general guidelines on online safety are always applicable. Remember to report any suspected cyber fraud to the National Cyber Crime Reporting Portal (cybercrime.gov.in) and call the cybercrime helpline at 1930 immediately, if you think you are a victim.

How to Protect Yourself

1. Verify the Sender: Always independently verify the sender's identity by contacting the supposed organization directly through official channels (e.g., their official website or phone number). Do not use the contact information provided in the suspicious email or message.
2. Double-Check Information: Cross-reference any information received with known and trusted sources, such as the official websites of maritime authorities and regulatory bodies.
3. Use Strong Passwords and MFA: Ensure strong, unique passwords for all your accounts and enable multi-factor authentication (MFA) wherever possible.
4. Secure Your Devices: Keep your computers, smartphones, and other devices updated with the latest security patches and use reputable antivirus software.
5. Educate Your Crew: Train your crew members about the dangers of phishing scams and equip them with the knowledge to identify and avoid them. Hold regular security awareness workshops.
6. Implement Robust Security Protocols: For shipping companies, enforce stringent security protocols for handling sensitive information and processing financial transactions.
7. Avoid Clicking Suspicious Links: Never click on links or download attachments from untrusted sources. Instead, manually type the URL of the website into your browser.

What to Do If You've Been Targeted

1. Report the Incident: Immediately report the scam to the National Cyber Crime Reporting Portal (cybercrime.gov.in) and file a complaint with your local police station.
2. Contact Your Bank: Notify your bank immediately if you have shared any financial information or made any fraudulent payments. Ask them to freeze your accounts and reverse any unauthorized transactions.
3. Change Your Passwords: Change all your passwords immediately, especially for your financial accounts and other sensitive online services.
4. Monitor Your Credit Report: Keep a close eye on your credit report for any signs of identity theft, such as unauthorized credit card applications or loan requests.
5. Alert Relevant Authorities: Inform relevant maritime authorities and industry bodies about the scam to help them raise awareness and prevent further incidents. The 1930 helpline is also essential to report any cybercrime to.

Frequently Asked Questions

Q: What if I already paid the scammers? Is there any chance of getting my money back?

A: Unfortunately, recovering money from scammers is often difficult, but not impossible. Immediately contact your bank and report the fraudulent transaction. They might be able to initiate a reversal process, especially if you acted quickly. File a police complaint and report the incident to the National Cyber Crime Reporting Portal. The sooner you act, the better your chances of recovering some of the funds.

Q: How can I tell if a maritime authority is legitimate online?

A: Always verify the authenticity of any maritime authority by cross-referencing their contact information with their official website or directory. Be wary of unsolicited emails or messages, poor grammar and spelling, and requests for sensitive information shared through unverified channels. Look for official government websites that end in ".gov.in".

Q: What should I do if I suspect that my crew's Aadhaar or passport information has been compromised?

A: If you suspect that your crew's personal information has been compromised, immediately advise them to report the incident to the relevant authorities, such as the UIDAI (for Aadhaar) and the passport office. They should also monitor their credit reports and online accounts for any signs of identity theft. Consider reporting a potential SIM swap to their mobile carrier as well.

Think you’ve spotted a scam? Don't fall for it! Verify any suspicious messages or requests at BharatSecure.app.