What to do if I shared my OTP in a UPI scam?

Immediately contact your bank's helpline to report the incident and block any unauthorized transactions. You can also file a complaint at cybercrime.gov.in.

How can I identify the ED 'Account Verification' Remote Access Scam?

This scam typically involves unsolicited calls from someone claiming to be from the Enforcement Directorate, asking you to install remote access software and verify your account under urgency.

How do I report this type of scam in India?

You can report this scam by calling 1930 for the cybercrime helpline, or you can file a report online at cybercrime.gov.in. Additionally, notify your bank.

What are the steps for recovering money or protecting accounts after this scam?

Contact your bank immediately to discuss potentially reversing fraudulent transactions, change your account passwords, and monitor your banking activities closely for any signs of further unauthorized access.

ED 'Account Verification' Remote Access Scam

INDIA — By BharatSecure Threat Intelligence Team · Updated May 28, 2026

Verdict: Suspicious | Risk Score: 8/10 | Severity: high

Category: UPI, WhatsApp, KYC

How ED 'Account Verification' Remote Access Scam Works

Overview: This scam targets Indian bank customers by posing as Enforcement Directorate or tax officials who claim your account is flagged for suspicious activity. The fraudster convinces you to install remote access apps like AnyDesk or TeamViewer, allegedly for "verification," but then gains control of your device and drains your bank accounts. How It Works: 1. You get a call or WhatsApp from someone claiming to be from the ED or a government department. 2. The caller says your account is frozen or needs urgent verification. 3. You're asked to download a specific app and share an access code. 4. The scammer uses remote access to log into your banking apps and make unauthorized UPI or wallet transfers. 5. Sometimes, they ask you to read or forward OTPs. India Angle: Most incidents are reported from metropolitan cities and towns with high digital banking usage. Both public and private sector bank accounts are being targeted. Scammers may reference Aadhaar, PAN, or GSTN to sound legitimate. Hindi and English are used, with some attempting regional languages like Telugu or Marathi for local impact. Real Examples: - “Madam, your account is blocked due to ED instructions. Install this app, and I’ll help you verify. Share the code with me.” - “This is ED Surveillance. Please follow our instructions to avoid arrest.” Red Flags: - Requests to install unfamiliar apps for 'verification' or 'support' - Caller insists on receiving OTPs or device access codes - Offers to "save you" from immediate arrest if you cooperate remotely - Calls or messages come from mobile numbers or personal WhatsApp profiles Protective Measures: - Never install remote access apps at the direction of an unknown caller - Don't share OTPs or device passwords—even with someone claiming to be from a government agency - Always contact your bank through numbers printed on official documents - Cross-check any urgent action by contacting the ED directly via their website If Victimised: - Disconnect your device from the internet - Change all online banking passwords - Contact your bank for immediate action and reversal of unauthorized transactions - Report to cybercrime.gov.in and call 1930 without delay Related Scams: - Tech Support Impersonation Frauds - Fake Income Tax Raids - KYC Update Phishing Calls

How This Scam Works — Detailed Explanation

Scammers behind the ED 'Account Verification' Remote Access Scam often find victims through unsolicited calls or messages on platforms like WhatsApp. They typically impersonate officials from the Enforcement Directorate or other government departments, claiming they are investigating unlawful activities related to the victim’s bank account. These fraudsters tend to use personal information, which they might have gathered from previous data breaches or social engineering tactics, to make their approach seem legitimate. By using familiar platforms, they gain a sense of trust and urgency that lures unsuspecting victims.

The tactics employed by these scammers are heavily reliant on psychological manipulation. Once they connect with a victim, they typically create a sense of alarm by stating that the victim's bank account is frozen due to suspicious activities. They play on fears of legal action or account confiscation to apply pressure. To 'resolve' this issue, they instruct victims to install remote access applications such as AnyDesk or TeamViewer, creating a false narrative that this is a standardized procedure for verification. By exploiting trust in official protocols, they can quickly gain control of the victim's device while maintaining the pretense of providing assistance.

Upon gaining access, the scammers usually manipulate the victim into providing sensitive banking information. This may include logging into UPI services or revealing their Aadhaar number under the guise of required verification. For instance, a victim might log into their banking app to demonstrate their financial behavior, which the scammer watches remotely, making it possible for them to steal funds. An alarming number of victims have reported losses totaling in crores, with real-world examples showcasing individuals losing everything from ₹50,000 to over ₹2 lakh within mere minutes. In a country where UPI transactions are soaring, the vulnerability in this system is more pronounced, affecting daily lives significantly.

The impact of scams like this across India is devastating, not only in terms of finances but also in terms of mental health and trust in digital services. The Ministry of Home Affairs (MHA) recently disclosed that scams related to remote access have led to losses exceeding ₹500 crore nationwide. Additionally, in line with alerts from the Reserve Bank of India (RBI) and CERT-In advisories, it's evident that the proliferation of these scams is a growing threat, especially as online finance solutions become more embedded in everyday activities. People who fall victim to such scams may find themselves wary of using digital banking services in the future, directly affecting their financial security in the long run.

To distinguish this scam from legitimate communications, it is vital to look out for clear red flags. Government officials will never ask you to provide control of your devices to verify your account. Furthermore, authentic organisations will contact you through official lines, not unsolicited phone calls or messages. They will provide a chance to verify their identity by contacting the institution they claim to represent. Always remember to verify any alarming messages, especially when immediate action is demanded — reputable officials will give you time to understand the situation. Trust your instincts; if something feels off, it probably is.

Visual Intelligence:

BharatSecure's AI has identified this as a used in scams targeting Indian users.

Who Does ED 'Account Verification' Remote Access Scam Target?

General public across India

Red Flags — How to Identify ED 'Account Verification' Remote Access Scam

Asked to install remote access apps (AnyDesk/TeamViewer)
Caller demands control of phone or computer
Pressure to urgently verify or unfreeze your account
Threats of legal action for non-compliance

What To Do If You Encounter ED 'Account Verification' Remote Access Scam

Report the incident immediately by calling the cybercrime helpline at 1930 or visiting cybercrime.gov.in.
Collect all details of the scam, including call logs and any messages received from the scammers.
Contact your bank's helpline (SBI 1800-11-1109, HDFC 1800-202-6161) to inform them that your account may be compromised.
Change passwords for your banking and email accounts to prevent further fraud.
Install antivirus software and run a full device scan to remove any malicious programs.
Educate family and friends about this scam to prevent them from becoming victims.

How to Report ED 'Account Verification' Remote Access Scam in India

Call 1930 — National Cyber Crime Helpline (24x7)
File a complaint at cybercrime.gov.in
Contact your bank immediately if money was lost
Call RBI helpline: 14440 for banking fraud

Frequently Asked Questions

What to do if I shared my OTP in a UPI scam?: Immediately contact your bank's helpline to report the incident and block any unauthorized transactions. You can also file a complaint at cybercrime.gov.in.
How can I identify the ED 'Account Verification' Remote Access Scam?: This scam typically involves unsolicited calls from someone claiming to be from the Enforcement Directorate, asking you to install remote access software and verify your account under urgency.
How do I report this type of scam in India?: You can report this scam by calling 1930 for the cybercrime helpline, or you can file a report online at cybercrime.gov.in. Additionally, notify your bank.
What are the steps for recovering money or protecting accounts after this scam?: Contact your bank immediately to discuss potentially reversing fraudulent transactions, change your account passwords, and monitor your banking activities closely for any signs of further unauthorized access.

Related Scams in India

Verify Any Suspicious Message

Check any suspicious message, link, or call for free at bharatsecure.app. BharatSecure uses AI to detect scams in real-time and protect Indian users.