Screen-Sharing Remote Access OTP Theft — How to Identify & Stay Safe

INDIA — By BharatSecure Threat Intelligence Team · Updated May 28, 2026

Severity: CRITICAL | View Full Scam Details

Screen-Sharing Remote Access OTP Theft Scam in India 2026: Beware of UPI and Aadhaar Fraud

Fraudsters in India are increasingly using screen-sharing tricks to steal OTPs and drain bank accounts linked to UPI and Aadhaar.

What Is the Screen-Sharing Remote Access OTP Theft?

The screen-sharing remote access OTP theft scam is a growing cybercrime menace targeting Indian bank customers, especially those using UPI and Aadhaar-linked bank accounts. This scam frequently preys on older adults and less tech-savvy individuals by convincing them to share their phone screens, giving fraudsters real-time access to their sensitive one-time passwords (OTPs) used in banking transactions.

In India, this form of fraud is becoming more common due to the rapid adoption of digital payment methods like UPI and the availability of Aadhaar as a banking authentication tool. According to reported cases and advisories by CERT-In (Indian Computer Emergency Response Team) and I4C (Indian Cyber Crime Coordination Centre), scammers impersonate trusted entities such as bank helpdesks or tech support teams from popular banks to gain victims’ trust.

Banks like SBI and HDFC are often impersonated because many Indians use their services. The scam exploits the confidence customers place in official voices and the relatively lesser awareness around screen-sharing apps and remote access technology, leading to a critical risk score of 9 out of 10 by cybercrime monitoring agencies.

How This Scam Works — Step by Step

1. Cold Call or Unexpected Contact: The scammer contacts the victim by phone, usually claiming to be from the bank’s official helpdesk or a reputed tech support team. They inform the victim about an alleged issue with their UPI transactions or Aadhaar-linked account.

2. Building Trust: Using a friendly and helpful tone, the caller convinces the victim that urgent action is needed to protect their money. They may cite fake transaction alerts or security warnings to scare the victim.

3. Request to Share Screen or Install App: The scammer instructs the victim to install a remote access or screen-sharing app (e.g., AnyDesk, TeamViewer). They then guide the victim to grant permissions that allow them to view and control the phone remotely.

4. Prompting for OTP: When the victim tries to perform any UPI or Aadhaar-related action on their phone, an OTP is sent by SMS as part of the two-factor authentication. Since the scammer controls the screen, they immediately ask for this OTP, pretending it’s to verify the victim’s identity or secure the account.

5. Stealing OTP and Authorising Transactions: The scammer uses the OTP to approve fraudulent transactions via UPI apps or Aadhaar-linked bank services. They may transfer money out of the victim’s bank account or add fraudulent beneficiaries.

6. Disengagement: After draining funds, the scammer disconnects the remote access and ends the call, leaving the victim unaware until they notice missing money or transaction alerts.

Real Warning Signs to Watch For

• A call out of the blue claiming urgent bank or UPI issues without prior context.
• Requests to download and grant access to screen-sharing or remote control apps.
• Pressure to act quickly, especially to share OTPs or passwords.
• The caller insists on speaking only through WhatsApp or similar messaging apps.
• Inconsistent or poor knowledge about your bank, account details, or transactions.
• Asking for Aadhaar details or personal KYC information beyond normal procedures.
• Any request to approve transactions that the victim did not initiate.

What Happens to Victims

Victims often lose significant amounts of money, drained silently through UPI payments or Aadhaar-linked bank transfers. Because UPI payments are instant and irreversible, the chances of recovery are minimal if the fraud is not reported promptly.

Emotionally, victims experience distress, helplessness, and a loss of trust in digital banking. Many older adults feel shame or embarrassment, delaying reporting, which makes recovery harder. Additionally, if the scammer gains control over the Aadhaar-linked mobile number, they may attempt SIM swap fraud to bypass further security checks, compounding the damage.

Victims may also face long waits for grievance redressal from banks or digital platforms, emphasizing the need for increased awareness before falling victim.

What RBI and CERT-In Say

The Reserve Bank of India (RBI) regularly issues advisories urging customers never to share OTPs or passwords with anyone, regardless of the caller’s apparent authority. RBI’s guidelines stress that banks never call customers to ask for sensitive information for verification.

CERT-In and I4C have issued warnings on scams using social engineering combined with remote access tools. They advise users to install official updates and only use apps from trusted sources. The central government’s cybercrime helpline (dial 1930) is available nationwide for reporting such frauds promptly.

Banks maintain helpline numbers to verify suspicious calls, and RBI’s customer protection framework mandates banks to reimburse victims if negligence by the bank is proven. However, customer caution remains the first line of defense against screen-sharing SIM-swap scams.

How to Protect Yourself

1. Never share your OTP, PIN, or password with anyone, even if they claim to be bank officials.
2. Do not install or grant permissions to remote access or screen-sharing apps unless absolutely sure of the person’s identity.
3. Verify any unexpected calls independently by calling your bank’s official customer service number.
4. Regularly update your phone’s software and banking apps from official app stores only.
5. Enable two-factor authentication (2FA) and biometric locks on your financial and messaging apps.
6. Be cautious of urgent or threatening language urging quick action on phone calls or messages.
7. Use the DigiLocker app or UIDAI’s official portals to monitor Aadhaar-seeding activity on your bank accounts.

What to Do If You've Been Targeted

• Immediately call your bank’s official helpline to block all UPI transactions and freeze your account if possible.
• Report the incident to police cybercrime cells, either online via cybercrime.gov.in or at your local station.
• Contact the 1930 national cybercrime helpline to lodge a complaint and get guidance.
• Inform your mobile service provider if you suspect SIM clone or SIM swap to prevent further misuse.
• Change passwords and PINs for all bank and digital payment apps.
• Keep screenshots or call recordings as evidence if available.
• Follow up persistently with banks and cybercrime authorities to seek redressal.

Frequently Asked Questions

Q: Can a bank official ever ask for my OTP or password over the phone?
A: No. As per RBI guidelines, bank officials never ask for sensitive details like OTPs, passwords, or PINs over calls or messages. Any such request is likely a scam.

Q: How can I check if someone accessed my phone via screen-sharing apps?
A: If you notice new apps like AnyDesk, TeamViewer, or unfamiliar permissions, or if your phone behaves strangely, it could be a sign. Check installed apps and revoke permissions. Avoid granting access unless necessary.

Q: Are UPI transactions reversible if done fraudulently via OTP theft?
A: UPI transactions are generally immediate and cannot be reversed easily. However, if you report quickly, banks may investigate and sometimes refund funds, especially if the fraud was due to a system lapse.

For all suspicious messages or calls, always verify with BharatSecure.app and report fraud immediately at the 1930 cybercrime helpline.

Disclaimer: This article describes a pattern of fraud reported in public sources for public-safety awareness. It is not legal, financial, or medical advice. To request correction or removal of any content, write to hello@bharatsecure.app.