What is Fake DigiLocker Verification Scam?

Dangerous: Fake DigiLocker Verification Scam is a confirmed scam in India. Beware of fake DigiLocker apps stealing Aadhaar, banking details. Learn red flags, prevention tips. Report cybercrime at 1930 or cybercrime.gov.in

How does Fake DigiLocker Verification Scam work?

Step 1: Scammers send urgent SMS/WhatsApp messages claiming DigiLocker account suspension or document expiry with fake links Step 2: Victims are tricked into downloading fake DigiLocker apps from Google Play Store with similar icons but wrong developer names Step 3: Fake apps request excessive permissions like SMS reading, call logs, screen recording, and overlay access Step 4: Apps steal Aadhaar, PAN, phone numbers, OTPs from SMS, and banking credentials through fake UPI pages Step 5: Scammers use stolen information to drain bank accounts via UPI transactions and misuse documents for further fraud

How to protect yourself from Fake DigiLocker Verification Scam?

Call 1930 immediately to report any suspicious DigiLocker activity or fraud attempts. Verify the DigiLocker app developer on Google Play Store is 'National e-Governance Division, Government of India' before downloading. Avoid clicking on any unsolicited messages claiming account suspension or document expiry without verifying through official channels. Do not share your OTP, UPI PIN, banking passwords, or Aadhaar details with anyone, even if requested through messages.

Fake DigiLocker Verification Scam

फर्जी डिजिलॉकर वेरिफिकेशन घोटाला

INDIA — By BharatSecure Threat Intelligence Team · Updated Apr 20, 2026

Verdict: Dangerous | Risk Score: 9/10 | Severity: MEDIUM

Category: KYC, Government

How Fake DigiLocker Verification Scam Works

Step 1: Scammers send urgent SMS/WhatsApp messages claiming DigiLocker account suspension or document expiry with fake links
Step 2: Victims are tricked into downloading fake DigiLocker apps from Google Play Store with similar icons but wrong developer names
Step 3: Fake apps request excessive permissions like SMS reading, call logs, screen recording, and overlay access
Step 4: Apps steal Aadhaar, PAN, phone numbers, OTPs from SMS, and banking credentials through fake UPI pages
Step 5: Scammers use stolen information to drain bank accounts via UPI transactions and misuse documents for further fraud

How This Scam Works — Detailed Explanation

The Fake DigiLocker Verification Scam is a dangerous fraud targeting Indian users by exploiting the popularity of DigiLocker, a government-backed digital document wallet linked to Aadhaar and other official IDs. Scammers create fake apps or websites that mimic the official DigiLocker interface but are designed to steal personal information. These fake apps often appear on platforms like the Google Play Store under misleading developer names instead of the authentic 'National e-Governance Division, Government of India.' Victims may also receive unsolicited messages via WhatsApp, SMS, or email claiming their DigiLocker account is suspended or documents are about to expire, prompting urgent action.

Once a victim installs the fake app or clicks a suspicious link, they are asked to log in using their Aadhaar number, share one-time passwords (OTPs), or enter sensitive banking information such as UPI PINs or bank account details. Some fake apps request excessive permissions like reading SMS, access to call logs, or even screen recording, which are unnecessary for DigiLocker usage but help scammers harvest data silently. The attackers may use this information to steal money directly through mobile banking or UPI transactions, or they may sell the data on the dark web.

Scammers also trick victims by redirecting them to counterfeit payment pages when requesting fees for supposed document renewals or verification processes. These fake pages can capture login credentials or banking details. The use of WhatsApp to spread these scams is common, as many Indian users trust messages from known contacts, increasing the chance of clicking on malicious links. Once compromised, victims may notice unauthorized transactions or identity theft, resulting in financial loss and a long recovery process.

This scam highlights the need for vigilance when dealing with government-related digital services online. DigiLocker itself is a secure and valuable service, but the presence of these fake apps and phishing messages means users must verify app sources carefully and avoid sharing sensitive data over unsolicited communication. Reporting such incidents promptly to official cybercrime authorities helps protect others and curtail the scammers’ reach.

Who Does Fake DigiLocker Verification Scam Target?

Indian citizens aged 25-55 using smartphones, especially salaried professionals, small business owners, and government scheme beneficiaries familiar with DigiLocker services

Red Flags — How to Identify Fake DigiLocker Verification Scam

Developer name not 'National e-Governance Division, Government of India' on Google Play Store
Unsolicited urgent messages claiming account suspension or document expiry
App requesting unnecessary permissions like SMS reading, call logs, or screen recording
Requests for UPI PIN, banking passwords, or redirection to fake payment pages
Messages with suspicious links not from official digilocker.gov.in domain

What To Do If You Encounter Fake DigiLocker Verification Scam

Call 1930 immediately to report any suspicious DigiLocker activity or fraud attempts.
Verify the DigiLocker app developer on Google Play Store is 'National e-Governance Division, Government of India' before downloading.
Avoid clicking on any unsolicited messages claiming account suspension or document expiry without verifying through official channels.
Do not share your OTP, UPI PIN, banking passwords, or Aadhaar details with anyone, even if requested through messages.
Report suspicious links or fake DigiLocker websites to cybercrime.gov.in for investigation and removal.

How to Report Fake DigiLocker Verification Scam in India

Call 1930 — National Cyber Crime Helpline (24x7)
File a complaint at cybercrime.gov.in
Contact your bank immediately if money was lost
Call RBI helpline: 14440 for banking fraud

Frequently Asked Questions

What is Fake DigiLocker Verification Scam?: Dangerous: Fake DigiLocker Verification Scam is a confirmed scam in India. Beware of fake DigiLocker apps stealing Aadhaar, banking details. Learn red flags, prevention tips. Report cybercrime at 1930 or cybercrime.gov.in
How does Fake DigiLocker Verification Scam work?: Step 1: Scammers send urgent SMS/WhatsApp messages claiming DigiLocker account suspension or document expiry with fake links Step 2: Victims are tricked into downloading fake DigiLocker apps from Google Play Store with similar icons but wrong developer names Step 3: Fake apps request excessive permissions like SMS reading, call logs, screen recording, and overlay access Step 4: Apps steal Aadhaar, PAN, phone numbers, OTPs from SMS, and banking credentials through fake UPI pages Step 5: Scammers use stolen information to drain bank accounts via UPI transactions and misuse documents for further fraud
How to protect yourself from Fake DigiLocker Verification Scam?: Call 1930 immediately to report any suspicious DigiLocker activity or fraud attempts. Verify the DigiLocker app developer on Google Play Store is 'National e-Governance Division, Government of India' before downloading. Avoid clicking on any unsolicited messages claiming account suspension or document expiry without verifying through official channels. Do not share your OTP, UPI PIN, banking passwords, or Aadhaar details with anyone, even if requested through messages.
How to report Fake DigiLocker Verification Scam in India?: Report to cybercrime.gov.in or call 1930 (National Cyber Crime Helpline). You can also contact your local police station's cyber cell.

Related Scams in India

Verify Any Suspicious Message

Check any suspicious message, link, or call for free at bharatsecure.app. BharatSecure uses AI to detect scams in real-time and protect Indian users.