Payment Gateway Account Hijacking

How Payment Gateway Account Hijacking Works

Overview: Fraudsters exploit leaked Aadhaar and PAN data to open or hijack merchant accounts on payment gateways (like Razorpay, Paytm, etc.). This scam targets anyone whose documents have leaked, and allows scammers to process illicit funds—leaving innocent people with tax and legal issues. How It Works: 1. Scammer buys your Aadhaar/PAN from data brokers on the dark web. 2. Registers a merchant account on payment gateways using your identity. 3. Processes stolen funds (from ransomware, other frauds) through the account. 4. Withdraws or transfers the money to offshore or crypto wallets rapidly. 5. Victim only learns when tax notices or large transaction alerts appear for accounts they never opened. India Angle: Payment gateway abuse is rising across India, especially in metros and for people with good credit histories or business backgrounds. UPI handles are often created linked to PAN, Aadhaar, or business GST numbers. Real Examples: - SMS: "High-value debit of Rs 1.5 lakh from merchant account." - Email: "Your Paytm merchant registration is successful." Red Flags: - Alerts about merchant or business account openings in your name. - UPI handles or QR codes you don’t recognise. - Bank messages for unknown high-volume transactions. - Tax or GST notices for businesses you never started. Protective Measures: - Regularly check your SMS and emails for unfamiliar account registrations. - Monitor for GST, business or tax documents delivered to your address. - Report unrecognised accounts/bank activity to your bank and payment gateway support. - Freeze/lock your Aadhaar number online and monitor for new registrations. If Victimised: - Contact the payment platform’s fraud team immediately. - File a dispute with your bank and inform the RBI ombudsman. - Report to the cybercrime.gov.in portal and helpline 1930. Related Scams: - UPI handle misuse for instant loan fraud - Fake business registration using your PAN - Account aggregator app fraud via KYC

How This Scam Works — Detailed Explanation

In today’s digital ecosystem, scammers are increasingly targeting innocent individuals by capitalizing on leaked personal information. They often acquire sensitive data such as Aadhaar and PAN numbers from data brokers operating on the dark web. These brokers obtain the information through various means, including phishing attacks, data breaches, and even social engineering. In India, where identity documents like Aadhaar are widely used for digital transactions, this creates a fertile ground for fraud. Once fraudsters get hold of someone’s Aadhaar or PAN, they can create fake profiles on payment gateways such as Razorpay and Paytm using the victim's credentials without their knowledge.

Utilizing psychological tricks, scammers instill fear and urgency to manipulate their victims. They often craft messages that appear to be legitimate alerts from banks or payment gateways, claiming that unauthorized transactions have occurred or that urgent verification is needed. These messages may even reference security incidents or alert the user about “suspicious activity,” prompting individuals to act quickly without verifying the source. By creating a phantom sense of security around these false identities, scammers can process funds without arousing initial suspicion, leading victims to believe they are protected.

Once the scam is set in motion, victims find themselves entangled in a web of financial and legal troubles. A victim might start receiving unfamiliar merchant account alerts through UPI or SMS from their bank, which could be the first sign that something is amiss. Soon after, they may find unknown UPI handles registered under their PAN or receive tax notices for businesses they’ve never interacted with. In serious cases, victims can face large transactions hitting their real bank accounts, turning what should have been an innocent transaction into a legal nightmare. Recently, there have been reports of individuals in India losing as much as ₹200 crore to such scams, prompting government entities like the Ministry of Home Affairs (MHA) and the Reserve Bank of India (RBI) to issue advisories about these frauds.

The implications of payment gateway account hijacking are alarming. Once the scammers hijack a payment gateway, processed funds may be linked to illicit activities, including ransomware. Such financial entanglement often leads to investigations by authorities, usurping victims' peace of mind as they attempt to prove their innocence. It is essential for individuals to check their transactions frequently and remain vigilant about sudden increases in financial activities that seem inconsistent with their regular practices.

Recognizing the signs of a payment gateway account hijacking can be daunting but not impossible. Legitimate communications will always originate from verified official channels – for example, if you receive alerts about a merchant account, verify it directly with your bank or payment gateway’s customer service before taking further action. Always scrutinize unfamiliar UPI handles and never share critical financial information through unsecured channels. Investigating the legitimacy of unusual transactions can safeguard you against becoming a victim of this growing scam in India.

Visual Intelligence:

BharatSecure's AI has identified this as a used in scams targeting Indian users.

Who Does Payment Gateway Account Hijacking Target?

General public across India

Red Flags — How to Identify Payment Gateway Account Hijacking

• Merchant account alerts for unfamiliar accounts
• Unknown UPI handles using your PAN
• Tax notices for businesses you didn’t create
• Large bank transactions from unknown sources

What To Do If You Encounter Payment Gateway Account Hijacking

1. Report any suspicious activity immediately via the cybercrime helpline by calling 1930.
2. Verify with your bank if you receive alerts for merchant accounts you did not create.
3. Monitor your bank statements frequently for large transactions from unknown sources.
4. Change your UPI PIN and other passwords associated with your financial accounts.
5. Contact your payment gateway provider if you notice unfamiliar transactions or alerts.
6. Educate others about this scam to prevent further victimization.

How to Report Payment Gateway Account Hijacking in India

• Call 1930 — National Cyber Crime Helpline (24x7)
• File a complaint at cybercrime.gov.in
• Contact your bank immediately if money was lost
• Call RBI helpline: 14440 for banking fraud

Frequently Asked Questions

What to do if I find unauthorized UPI transactions linked to my PAN?

Immediately contact your bank’s helpline (e.g., SBI: 1800-11-1109) and report the incidents. You should also report the issue via cybercrime.gov.in.

How can I identify if I'm a victim of payment gateway account hijacking?

Be vigilant for unexpected merchant account alerts, tax notices for businesses you haven't created, or large transactions that you didn’t authorize.

How to report a payment gateway scam in India?

You can report the scam by calling the cybercrime helpline at 1930 or by visiting cybercrime.gov.in to file a formal complaint.

Can I recover money lost in a payment gateway scam?

To recover your lost money, contact your bank immediately to report the fraud, and provide them with all necessary details; they may assist in tracing the transactions.

Verify Any Suspicious Message

Check any suspicious message, link, or call for free at bharatsecure.app. BharatSecure uses AI to detect scams in real-time and protect Indian users.