Account Takeover via SIM Swap Fraud — How to Identify & Stay Safe

INDIA — By BharatSecure Threat Intelligence Team · Updated May 30, 2026

Severity: HIGH | View Full Scam Details

Beware of Account Takeover via SIM Swap Fraud in India 2026: How to Stay Safe

Account takeover through SIM swap fraud is one of the fastest-growing cybercrime threats in India, putting millions of mobile users and their bank accounts at serious risk.

What Is the Account Takeover via SIM Swap Fraud?

Account takeover via SIM swap fraud is a type of cybercrime where fraudsters trick mobile network providers into switching a victim’s phone number to a SIM card they control. Once they have control over the phone number, they can intercept OTPs (one-time passwords) sent by banks, payment apps, or other services tied to that number. This allows them to reset passwords, bypass KYC checks, and access sensitive accounts, leading to theft of money or personal data.

In India, where mobile phones are often central to financial transactions like UPI payments and Aadhaar-linked services, this scam is particularly dangerous. Fraudsters take advantage of the large population using apps such as WhatsApp, PhonePe, Google Pay, and others, as almost every financial app relies on OTP verification sent via SMS or calls to a mobile number.

According to public reports, incidents of SIM swap fraud have surged in recent years, with victims losing thousands or even lakhs of rupees. The Indian Computer Emergency Response Team (CERT-In) and the Reserve Bank of India (RBI) have issued advisories warning users and telecom companies to tighten security around SIM swapping and OTP authentication. The Ministry of Home Affairs’ Indian Cyber Crime Coordination Centre (I4C) also actively monitors this threat.

How This Scam Works — Step by Step

Scammers use a mix of social engineering and technical tricks to take over your phone number. Here is how the typical SIM swap fraud unfolds:

1. Information Gathering: Scammers start by collecting personal details about you from Facebook, Instagram, LinkedIn, or other social media. They look for your mobile number, email address, date of birth, and even posts that might reveal useful data like your address or job.

2. Contacting the Mobile Provider: Using the collected information, the fraudster contacts your telecom operator’s customer service (sometimes posing as you or someone authorized). They claim their old SIM is lost or damaged and request a new SIM with your number.

3. Impersonation and Psychological Manipulation: Often, callers claim to be from a trusted app customer care or even from your bank to establish credibility. They may exploit trust built over WhatsApp or phone to convince the operator to comply without thorough verification.

4. SIM Handed Over: Once the operator activates the fraudster’s SIM with your number, your old SIM loses service. Your phone suddenly stops receiving calls or SMS.

5. Account Takeover: The fraudster receives OTPs and verification codes sent by banks or payment apps linked to your phone number. They reset passwords and transfer funds through UPI or drain wallets.

6. Covering Tracks: The scammer tries to delay your reaction by blocking your original SIM or deleting messages and app notifications related to transactions.

Real Warning Signs to Watch For

• Sudden loss of network or inability to make/receive calls on your primary SIM without warning
• Unexpected OTP messages or bank alerts you did not initiate
• Calls or messages from unknown numbers claiming to be from your mobile operator asking for personal details
• Requests to share confidential OTPs or KYC data over WhatsApp or phone
• Notifications from banking apps about password or profile changes you did not make
• Inability to log in to important apps using your mobile number
• Friends or contacts receiving strange messages from your number asking for money

What Happens to Victims

The financial and emotional impact of SIM swap fraud can be severe. Victims often find their UPI accounts drained within minutes because OTPs required for authorizing payments are intercepted. Unlike credit card fraud, these transactions are harder to reverse since they appear authentic and authorized via OTP.

Besides immediate loss of money in INR, victims face steep challenges in reclaiming access to locked bank or digital wallets. Aadhaar misuse may also follow, as mobile verification is often tied to Aadhaar e-KYC. This may lead to further identity theft and illegal use of your identity documents.

Psychologically, victims experience stress, helplessness, and loss of trust in digital banking. Reporting the fraud and getting refunds from banks or telecom companies often involves lengthy procedures with no guaranteed outcomes.

What RBI and CERT-In Say

The Reserve Bank of India has issued guidelines emphasizing multi-factor authentication beyond just OTPs and called for telecom companies to strengthen SIM verification processes. The RBI also advises customers to monitor their account statements and report suspicious transactions immediately.

CERT-In warns against sharing OTPs or personal details with anyone and recommends using app-based authentication methods where possible. They also urge telecom providers to implement stricter KYC checks and educate users.

Victims of cyber fraud can call the National Cyber Crime Reporting Portal’s helpline at 1930 to lodge complaints. The RBI customer grievance cell and telecom ombudsman can be approached for redressal related to banking and mobile service issues, respectively.

How to Protect Yourself

1. Set up a SIM Lock or PIN: Request your mobile operator to enable a SIM lock or require a PIN for any SIM replacement request.

2. Avoid Sharing OTPs: Never share OTPs or personal details like Aadhaar numbers over calls or messages, even if the caller claims to be from your bank or telecom.

3. Use App-Based Authentication: Prefer app-based authenticators such as Google Authenticator or bank apps over SMS OTPs when possible.

4. Keep Personal Information Limited: Be cautious about the personal data you share on social media platforms.

5. Regularly Monitor Bank and UPI Transactions: Check your bank and UPI transaction alerts immediately and report any unauthorized transactions.

6. Inform Your Network Provider: Immediately notify your operator if your phone loses network unexpectedly.

7. Enable Mobile Number Locking Services: Some operators offer services that lock your number from porting or SIM swap without explicit verification.

What to Do If You've Been Targeted

• Immediately contact your mobile network operator’s customer care and request deactivation of the compromised SIM.
• Inform your bank and payment apps to block or freeze transactions linked to your number.
• Change passwords and enable multi-factor authentication on all your accounts.
• File a complaint on the National Cyber Crime Reporting Portal at cybercrime.gov.in.
• Report the incident to the 1930 cybercrime helpline for expert guidance.
• Lodge a complaint with the bank’s grievance cell and your telecom ombudsman.
• Keep records of all communications and transactions related to the incident for investigations.

Frequently Asked Questions

Q: Can SIM swap fraud happen even if I don’t share my OTPs?
A: Yes. Fraudsters can trick mobile providers into transferring your number without needing your OTP, making it crucial to secure your mobile account with PINs or locks.

Q: How quickly can money be stolen after a SIM swap?
A: Often within minutes, the scammer uses intercepted OTPs to conduct fraudulent UPI transfers or payments before the victim realizes something is wrong.

Q: Is it possible to recover money lost to SIM swap fraud?
A: Recovery depends on how quickly you report the fraud. Banks and payment apps may reverse transactions in some cases, but there are no guarantees. Prompt reporting to banks, telecom operators, and cybercrime authorities improves chances.

Stay alert and verify any suspicious messages or calls related to your mobile number and finances at BharatSecure.app. To report an incident, contact the 1930 cybercrime helpline.

Disclaimer: This article describes a pattern of fraud reported in public sources for public-safety awareness. It is not legal, financial, or medical advice. To request correction or removal of any content, write to hello@bharatsecure.app.