What to do if I shared my Aadhaar information in a scam?

Immediately contact your bank's helpline to secure your account and report to 1930 or cybercrime.gov.in for further assistance.

How can I identify unauthorized Aadhaar notifications?

Look for unexpected alerts asking for personal information or unfamiliar OTPs. Legitimate communications will not request sensitive data through unsecured channels.

How do I report this Aadhaar scam in India?

You can report to the cybercrime helpline at 1930, visit cybercrime.gov.in, and notify your bank about any fraudulent activity.

What steps can I take to recover money after this scam?

Contact your bank immediately to halt transactions, then file a complaint to cybercrime.gov.in. Keep records of all communications for recovery efforts.

AI-Driven Aadhaar Identity Hijacking Scam

Verdict: Suspicious | Risk Score: 9/10 | Severity: critical

Category: UPI, KYC, OTP

How AI-Driven Aadhaar Identity Hijacking Scam Works

Overview: This alarming scam involves fraudsters using artificial intelligence to take over a person's Aadhaar-linked digital identity, mainly targeting urban residents and professionals in India. By manipulating government-run Common Service Centers (CSCs), scammers are able to hijack Aadhaar credentials, impersonate victims, and move on to drain their bank accounts or apply for unauthorized loans. As more daily activities and banking are connected to Aadhaar, the potential damage from these scams is increasing with devastating effects on victims' finances and reputations. How It Works: First, scammers obtain a person's Aadhaar details (number, photo, or other demographic data) often sourced from data breaches or leaks. The fraudsters then use illegal Aadhaar update kits at CSCs to modify the mobile number linked to the Aadhaar, so that any future OTPs are sent to a number they control. Leveraging artificial intelligence, they create realistic "blink" facial videos from static photos—an advanced trick to fool biometric checks meant to confirm identity. With this, they gain unauthorized access to services like DigiLocker, government portals, and bank accounts, sometimes taking quick loans or transferring funds to mule accounts in the victim's name. India Angle: These gangs are most active in urban centers such as Ahmedabad, Delhi, and fast-growing towns, targeting anyone whose Aadhaar details have leaked online. The scam often exploits platforms like DigiLocker, myAadhaar app, UPI-linked bank accounts, and fintech loan providers—services which are increasingly used by working professionals, young adults, and students. Real Examples: 1. "Dear customer, your Aadhaar mobile number is being updated. If not initiated by you, contact UIDAI Helpline." 2. A bank notification: "KYC update completed via biometric auth. Thank you."—but the user never requested this. 3. CSC operator offering 'quick KYC correction' at half the price. Red Flags: 1. Unexpected notifications about Aadhaar mobile/email changes. 2. OTPs arriving for unknown transactions. 3. New loan enquiries or EMI reminders from banks you don't bank with. 4. Unfamiliar logins under DigiLocker activity. 5. SMS alerts about mobile number change from Aadhaar or UIDAI. Protective Measures: Always lock your Aadhaar biometrics using the myAadhaar portal—this is your shield against illegal use. Regularly monitor your last 6 months' Aadhaar authentication history online for unusual authorizations. Never share your Aadhaar OTP or allow anyone to update your Aadhaar unless you are present physically. Avoid handing over photocopies, and use masked Aadhaar when sharing documents. If Victimised: Act immediately—report suspicious activities to the UIDAI and file a complaint at cybercrime.gov.in or by calling 1930. Inform your bank and freeze accounts if needed. Alert the local police, and keep all suspicious messages or emails as evidence. The RBI and UIDAI provide guidance for remediation, but swift response is crucial to limit losses. Related Scams: 1. AI-based deepfake video misuse for loan scams. 2. Aadhaar-enabled biometric authentication bypass fraud. 3. SIM swap attacks leveraging Aadhaar data.

How This Scam Works — Detailed Explanation

The AI-Driven Aadhaar Identity Hijacking Scam typically begins in urban environments where residents frequently use digital services linked to their Aadhaar number, such as UPI transactions and various online banking services. Scammers often utilize social media platforms like WhatsApp to spread misinformation and target potential victims. They may approach unsuspecting individuals under the pretense of providing technical assistance for Aadhaar authentication issues or offering promotional deals for services related to digital payments. Once they gain a victim's trust, they convince them to share personal details, including their Aadhaar number, which can be further exploited for fraudulent purposes.

The tactics used by these fraudsters are often psychological, exploiting people's fears and trust in technology. For instance, they might claim that there is an urgent need to update Aadhaar information to avoid service disruptions. This creates a sense of urgency that can cloud a victim's judgment. Additionally, they have been known to send out phishing emails or messages that mimic official communication from UIDAI or the government. Victims may receive text messages about Aadhaar updates or even unfamiliar OTPs for actions they did not initiate. By leveraging these psychological tricks, scammers can effectively manipulate individuals into providing sensitive information.

Once a victim's Aadhaar credentials are compromised, the scam flows into a series of high-stakes financial actions. After hijacking the identity, scammers often take over the victim's bank accounts linked with their Aadhaar number, making unauthorized UPI transactions or draining funds directly. Real-life cases have been reported where individuals, including working professionals in metropolitan cities, lost substantial financial amounts within a few hours after their accounts were compromised. These incidents often involve substantial losses, leading to a sense of victimization and helplessness among, for instance, families who depend on these resources for daily expenses.

The impact of this scam in India has been alarming, particularly as more people rely on digital banking integrated with Aadhaar. Recent reports highlight that over ₹100 crore was lost in similar scams in just one quarter, prompting investigations by agencies like the Ministry of Home Affairs (MHA), the Reserve Bank of India (RBI), and advisories from CERT-In. The focus from these authorities has been to educate the public about the dangers of sharing personal information online and the implications of unauthorized access to Aadhaar-linked services. This growing incidence has made it clear that technological advancements can be a double-edged sword, especially when safety measures are insufficient.

To distinguish this scam from legitimate communications, victims should be aware of several key indicators. They should be alert for unexpected alerts related to Aadhaar changes, which should only be initiated by them. Legitimate communications from UIDAI will never require you to share sensitive information like passwords or OTPs. Messages from unknown numbers regarding loan or EMI notifications are also a red flag. Moreover, individuals should compare any unexpected requests for action with prior communications and seek direct confirmation through official channels like UIDAI or their respective banks, ensuring that their identities remain protected while using these essential services.

Visual Intelligence:

BharatSecure's AI has identified this as a used in scams targeting Indian users.

Who Does AI-Driven Aadhaar Identity Hijacking Scam Target?

General public across India

Red Flags — How to Identify AI-Driven Aadhaar Identity Hijacking Scam

Unexpected Aadhaar mobile/email change alerts
Unfamiliar OTPs received
Unknown loan or EMI notifications
Unauthorized DigiLocker or bank logins
SMS about Aadhaar updates you did not request

What To Do If You Encounter AI-Driven Aadhaar Identity Hijacking Scam

Report suspicious messages about Aadhaar changes to 1930 or visit cybercrime.gov.in.
Contact your bank's helpline immediately if you suspect unauthorized access (SBI: 1800-11-1109, HDFC: 1800-202-6161).
Change your Aadhaar-linked passwords without delay if you receive unauthorized OTPs.
Monitor your bank accounts and UPI transactions closely for any unrecognized activity.
Alert friends and family about this scam to prevent them from falling victim.
Document all communications with scammers or unauthorized notifications for future reference.

How to Report AI-Driven Aadhaar Identity Hijacking Scam in India

Call 1930 — National Cyber Crime Helpline (24x7)
File a complaint at cybercrime.gov.in
Contact your bank immediately if money was lost
Call RBI helpline: 14440 for banking fraud

Frequently Asked Questions

What to do if I shared my Aadhaar information in a scam?: Immediately contact your bank's helpline to secure your account and report to 1930 or cybercrime.gov.in for further assistance.
How can I identify unauthorized Aadhaar notifications?: Look for unexpected alerts asking for personal information or unfamiliar OTPs. Legitimate communications will not request sensitive data through unsecured channels.
How do I report this Aadhaar scam in India?: You can report to the cybercrime helpline at 1930, visit cybercrime.gov.in, and notify your bank about any fraudulent activity.
What steps can I take to recover money after this scam?: Contact your bank immediately to halt transactions, then file a complaint to cybercrime.gov.in. Keep records of all communications for recovery efforts.

Verify Any Suspicious Message

Check any suspicious message, link, or call for free at bharatsecure.app. BharatSecure uses AI to detect scams in real-time and protect Indian users.