What to do if I shared my OTP in a UPI scam?

Immediately contact your bank's helpline. For instance, SBI's number is 1800-11-1109 and HDFC's is 1800-202-6161. Report to 1930 or cybercrime.gov.in.

How can I identify a Coinbase clone website?

Look for slight URL discrepancies, unusual site designs, and unsolicited messages asking for your credentials.

How do I report this type of scam in India?

You can report such scams by calling the helpline at 1930, visiting cybercrime.gov.in, or notifying your bank's fraud department.

What are the steps for recovering money or protecting my accounts after this scam?

Contact your bank immediately, change all your passwords, and consider freezing your Aadhaar number and reporting to 1930.

Coinbase Clone Website Phishing Scam

Verdict: Suspicious | Risk Score: 9/10 | Severity: critical

Category: UPI, WhatsApp, Phishing

How Coinbase Clone Website Phishing Scam Works

Overview: Scammers in India are now expertly constructing fake websites that closely resemble trusted cryptocurrency exchanges like Coinbase. These phishing platforms are designed to deceive users into revealing their login credentials and extra security information, such as 2FA codes. Both experienced investors and new crypto users are becoming targets. The consequences are severe—victims not only lose their digital assets but also risk identity theft and further financial compromise. How It Works: 1. Fraudsters launch websites with names almost identical to official exchanges—for instance, using “CoinbasePro.com” instead of the genuine “pro.coinbase.com.” 2. Victims arrive at these sites via links in search ads, emails, or SMS. 3. Pop-ups warn that an account is "locked" or facing security threats, asking victims to call a support number. 4. On the call, fake support asks for login details, 2FA codes, or directs users to install remote desktop software. 5. Within minutes, cybercriminals drain crypto wallets or transfer assets overseas. India Angle: This scam leverages widespread Indian adoption of cryptocurrency by targeting those who search for login portals or support on platforms such as Google, WhatsApp, and Telegram. There have been reports of Indian-language pop-ups and spoofed support numbers with +91 codes. Many affected are professionals and tech-savvy users in Tier 1 cities, especially those who use international exchanges alongside UPI. Real Examples: - A Mumbai investor, seeking help for a Coinbase login issue, clicked a sponsored link and called the fraudulent support hotline listed on a clone site. Asked for his 2FA, his crypto was gone within the hour. - Delhi user received a WhatsApp message with a ‘Coinbase wallet restoration’ link urging immediate login—result: complete wallet compromise. Red Flags: - Slight misspellings or extra symbols in exchange website URLs - Demands for 2FA codes or login OTPs by email, SMS, or phone - Pop-up warnings or urgent “account locked” messages when visiting a site - Support lines or contacts only available via WhatsApp or random phone numbers - Requests to install screen-sharing or remote access software Protective Measures: - Always enter exchange URLs manually or use saved bookmarks for login - Verify official support contacts; never share 2FA or passwords - Enable phishing protection in browsers and report fake sites to BharatSecure.app and cybercrime authorities - Keep operating system, browsers, and apps up to date - Check for FIU-IND registration of any crypto platform before interacting If Victimised: - Immediately reset all passwords associated with the compromised platform - Report the incident to the cybercrime helpline (1930) or cybercrime.gov.in - Notify your bank and wallet provider for possible freezing of funds - Preserve all evidence (screenshots, emails, SMS) Related Scams: - Tech Support Phishing: Imposters pretend to be exchanges like Binance or CoinDCX with similar tactics. - Investment Ponzi Sites: Fraud platforms promise to multiply crypto deposits and vanish once funds are sent. - Google Search Ad Scams: Malicious ads with fake exchange links placed at the top of search results.

How This Scam Works — Detailed Explanation

Scammers are increasingly sophisticated, creating clone websites that mimic legitimate cryptocurrency exchanges like Coinbase. They typically find victims through social media platforms, online forums, and targeted ads that advertise easy access to cryptocurrency investments. Many times, they use platforms popular in India such as WhatsApp to reach potential investors, enticing them with offers that seem too good to be true. The victims are often lured by promises of high returns on investments or by seeing friends discussing cryptocurrency gains. As the interest in cryptocurrencies remains high, these scammers are taking advantage of gaining trust through social interactions, often posing as fellow investors.

The tactics employed by these scammers are designed to exploit the psychological tendencies of individuals. They create a sense of urgency, with pop-ups urging users to log in to secure or maximize their investments. These websites closely resemble authentic platforms, even down to small inaccuracies in the URL, which makes it difficult for users to differentiate between real and fake. If a user notices these slight discrepancies, the scammers are quick to emphasize that 'every detail counts'. By instilling urgency and fear of missing out, they manipulate users into acting quickly without verifying the source. Further, they use social engineering techniques by having supposed support teams reach out via WhatsApp, where they ask for 2FA codes or OTPs. This sense of familiarity lowers the guard of victims, leading them to share critical security information.

When victims fall for the scam, the process is swift and devastating. Initially, victims visit the fake website, believing it's legitimate and enter their login credentials. They might receive calls or messages from the scammer, posing as customer support, who then ask for OTPs and 2FA codes under various pretenses such as verifying suspicious activity. Once they have this information, the scammers can easily gain unauthorized access to the victim's account. Victims in India have reported losing substantial amounts of their savings; the collective losses attributed to such scams exceeded ₹600 crore in 2023 alone. Many victims find themselves not only besieged by the loss of their cryptocurrencies but also facing the threat of identity theft if their personal information was compromised.

In context with official guidelines, the Indian Ministry of Home Affairs and the Reserve Bank of India have sounded alerts against these scams, urging citizens to be vigilant. The Cybercrime and Cybersecurity division of CERT-In regularly issues advisories regarding phishing schemes, highlighting the need for awareness among users. Victims can face complex challenges, as the lack of regulation in the cryptocurrency space in India means recourse can be limited. However, every reported incident does contribute to broader efforts in combating cybercrime across the country.

Spotting a Coinbase clone or similar phishing scam involves being cautious about any communication that comes through unofficial channels. Always verify the URL of the website; a legitimate Coinbase URL will never contain subtle spelling differences. Urgent requests for your login credentials or requests to install software to grant remote access like AnyDesk or TeamViewer are strong indicators of a scam. Legitimate companies will never ask for sensitive information through WhatsApp or any messaging platform.

Visual Intelligence:

BharatSecure's AI has identified this as a used in scams targeting Indian users.

Who Does Coinbase Clone Website Phishing Scam Target?

General public across India

Red Flags — How to Identify Coinbase Clone Website Phishing Scam

Exchange website URL has small spelling changes
Support asks for OTP or 2FA codes
Urgent pop-ups demand immediate login
Requests to install AnyDesk or TeamViewer
Support contacts only via WhatsApp

What To Do If You Encounter Coinbase Clone Website Phishing Scam

Report the incident to the cybercrime helpline by calling 1930 or visiting cybercrime.gov.in for further assistance.
Contact your bank immediately and inform them of any unauthorized access to your accounts or digital assets.
Change passwords for all your linked accounts without delay, especially those involving financial transactions.
Enable additional security measures like biometric authentication where available to protect against future breaches.
Be proactive and monitor your financial accounts for unusual activities that may suggest fraudulent behavior.
Educate yourself about the signs of scams and share your knowledge with family and friends to increase awareness.

How to Report Coinbase Clone Website Phishing Scam in India

Call 1930 — National Cyber Crime Helpline (24x7)
File a complaint at cybercrime.gov.in
Contact your bank immediately if money was lost
Call RBI helpline: 14440 for banking fraud

Frequently Asked Questions

What to do if I shared my OTP in a UPI scam?: Immediately contact your bank's helpline. For instance, SBI's number is 1800-11-1109 and HDFC's is 1800-202-6161. Report to 1930 or cybercrime.gov.in.
How can I identify a Coinbase clone website?: Look for slight URL discrepancies, unusual site designs, and unsolicited messages asking for your credentials.
How do I report this type of scam in India?: You can report such scams by calling the helpline at 1930, visiting cybercrime.gov.in, or notifying your bank's fraud department.
What are the steps for recovering money or protecting my accounts after this scam?: Contact your bank immediately, change all your passwords, and consider freezing your Aadhaar number and reporting to 1930.

Related Scams in India

Verify Any Suspicious Message

Check any suspicious message, link, or call for free at bharatsecure.app. BharatSecure uses AI to detect scams in real-time and protect Indian users.