What to do if I shared my OTP in a UPI scam?

Immediately contact your bank's helpline to report the incident and block your account. You can also report it at cybercrime.gov.in or call 1930.

How can I identify phishing SMS from my bank?

Look for misspelled bank names, unfamiliar URLs, and any messages asking for urgent action. Legitimate banks will never ask for sensitive information via SMS.

How do I report this type of scam in India?

You can report phishing scams at cybercrime.gov.in or call the national helpline 1930. Additionally, notify your bank about the incident.

How to recover money or protect accounts after this scam?

Contact your bank immediately to freeze your account, check for unauthorized transactions, and follow their security protocols to recover any lost funds.

Phishing SMS with Fake Bank Login Portals

INDIA — By BharatSecure Threat Intelligence Team · Updated Apr 29, 2026

Suspicious Risk: 8/10 Severity: High BharatSecure Threat Intelligence

Category: UPI, WhatsApp, Phishing

Verdict Summary

Phishing SMS with Fake Bank Login Portals shows strong scam indicators common in fraud targeting Indian users. Do not share OTPs, passwords, or payments — verify the source independently.

Risk score: 8/10 · Severity: High · Verdict: Suspicious

Scam Intelligence: Phishing SMS with Fake Bank Login Portals

Proprietary signals from BharatSecure's scam-tracking database.

Last reported

Apr 22, 2026

How Phishing SMS with Fake Bank Login Portals Works

Overview: This scam leverages fake SMS messages or search ads claiming to be from your bank, tricking users into clicking on lookalike websites. Unsuspecting victims who enter their account details and OTPs on these portals instantly hand over their banking access to scammers. These scams are particularly dangerous in India, where mobile and internet banking adoption has surged, making unsuspecting users vulnerable to sophisticated digital deceptions. How It Works: The scam begins with an SMS, WhatsApp, or a top search result (often a sponsored ad) that claims urgent verification is needed for your bank account. The message contains a shortened URL or a site mimicking an Indian bank (e.g., "sb1.co.in" instead of "sbi.co.in"). Victims who click are directed to a fake login page where, upon entering details and OTPs, they surrender their credentials to fraudsters. Often, a follow-up call confirms the OTP to complete the account takeover and rapidly transfer funds. India Angle: In India, such scams target both Hindi and English speakers. Search engine poisoning is common, with ads for 'SBI customer care' or similar often leading to fake portals, especially in regions with high net banking penetration (Delhi, Maharashtra, Karnataka). Many victims also report receiving these messages during tax season, festival sales, or after major data leaks. Real Examples: - "Your SBI account has been blocked. Click https://sb1.co.in/verify to unblock." - After searching 'customer care' online, Ravi called a number from top results, which turned out fake, and was asked to verify via a website link. Red Flags: - Links or URLs with minor spelling changes or unusual endings - SMS or WhatsApp demanding urgent login to save your bank account - Grammatical errors or unprofessional communication - Follow-up calls seeking OTP confirmation after portal login Protective Measures: - Never click on links received via SMS/WhatsApp; type your bank’s URL manually - Use only official bank apps downloaded from trusted sources - Enable alerts for all transactions, and verify suspicious activity immediately - Forward suspicious SMS to 7726, India’s spam reporting number If Victimised: - Change your bank passwords and block your card - Contact your bank’s fraud department and lodge a complaint - File a report with 1930 and at cybercrime.gov.in Related Scams: - Loan settlement impersonation SMS - Income tax refund phishing scams - QR code-enabled phishing portals for UPI apps

How This Scam Works — Detailed Explanation

In India, where mobile banking is increasingly becoming the norm, scammers are leveraging this trend to ensnare unsuspecting users. They often start their operations by obtaining mobile numbers through various means, including data breaches or even buying lists of phone numbers. Once they have their target's contact information, they craft convincing SMS messages that appear to come from legitimate banks. Additionally, they use platforms such as Google Ads to place fake bank login portals high on search results, ensuring that users are more likely to click on their links. This dual approach of direct messaging and search advertisement significantly increases their chances of reaching potential victims.

The scam begins with a seemingly innocuous SMS, often claiming that there has been an unauthorized attempt to access the victim's bank account, resulting in an urgent request to verify their identity. Language that instills fear or urgency is a hallmark of this strategy. Victims are often targeted with psychological tricks, pushing them to react quickly without thinking critically. The SMS typically includes a link to a fake login page that closely resembles their bank’s actual website. By creating a sense of panic, scammers effectively lower the recipient's defenses, compelling them to click the link and enter their personal banking details, including OTPs which can instantly hand over access to their accounts.

Once the victim clicks the link and lands on the fake portal, they are prompted to log in using their account credentials, often including their UPI registration details or Aadhaar numbers. Following their input, the victims may receive follow-up calls from the scammers, impersonating bank representatives who may ask for additional OTPs or verification steps post-login. This step often seals the deal for the scammers as they gather all necessary information to siphon off funds. Reports have shown that many users, including those who use popular banks like SBI or HDFC, have fallen prey to these scams, leading to significant financial losses.

The impact of such scams is staggering in India, where it is estimated that millions of rupees are lost to these fraudulent activities every year. In 2022 alone, scams like phishing SMS contributed to over ₹500 crores of financial loss in the banking sector, prompting serious warnings from regulatory bodies like the Reserve Bank of India (RBI) and the Ministry of Home Affairs (MHA). Cybersecurity agencies, including CERT-In, have issued advisories stressing the importance of vigilance, offering statistics that suggest an upward trend in such cyber fraud. This trend emphasizes the urgent need for better awareness and protective measures among the general public.

Recognizing these scams from legitimate communications can save individuals from financial ruin. Typically, signs of a phishing SMS include suspicious links that often display misspelled bank names or unusual URL endings that do not correspond with the official domain. In addition, urgent demands for immediate action or requests for sensitive information should raise red flags. Legitimate communications from banks will always use secured channels and will never ask for OTPs or password verifications over the phone after login attempts. Understanding these distinctions is crucial for protecting oneself against such prevalent scams.

Visual Intelligence:

BharatSecure's AI has identified this as a used in scams targeting Indian users.

Who Does Phishing SMS with Fake Bank Login Portals Target?

General public across India

Red Flags — How to Identify Phishing SMS with Fake Bank Login Portals

Suspicious links with misspelled bank names in messages
Urgent messages asking for immediate login or action
Unfamiliar or slightly changed URL endings
Follow-up calls asking for OTP after portal login

What To Do If You Encounter Phishing SMS with Fake Bank Login Portals

Report the incident immediately at cybercrime.gov.in or call the cybercrime helpline at 1930.
Contact your bank's helpline (SBI: 1800-11-1109, HDFC: 1800-202-6161) to block your account if you've shared your login details.
Change your online banking passwords immediately to prevent unauthorized access.
Enable two-factor authentication on your bank account if it's not already activated.
Monitor your bank statements regularly for any unauthorized transactions.
Educate friends and family about this scam to help safeguard others from falling victim.

How to Report Phishing SMS with Fake Bank Login Portals in India

Call 1930 — National Cyber Crime Helpline (24x7)
File a complaint at cybercrime.gov.in
Contact your bank immediately if money was lost
Call RBI helpline: 14440 for banking fraud

Frequently Asked Questions

What to do if I shared my OTP in a UPI scam?: Immediately contact your bank's helpline to report the incident and block your account. You can also report it at cybercrime.gov.in or call 1930.
How can I identify phishing SMS from my bank?: Look for misspelled bank names, unfamiliar URLs, and any messages asking for urgent action. Legitimate banks will never ask for sensitive information via SMS.
How do I report this type of scam in India?: You can report phishing scams at cybercrime.gov.in or call the national helpline 1930. Additionally, notify your bank about the incident.
How to recover money or protect accounts after this scam?: Contact your bank immediately to freeze your account, check for unauthorized transactions, and follow their security protocols to recover any lost funds.

🛡️

How This Scam Works — BharatSecure AI

Spreading fast

A plain-language breakdown based on 87 real reported scams of this type.

How they reach you	Unsolicited contact via WhatsApp messages/calls, SMS, and phone calls (vishing) is the dominant first-touch channel, frequently delivering malicious payment links, fake QR codes, or disguised UPI coll
How they gain your trust	Scammers establish credibility through impersonation of trusted authorities — bank officials, payment-app customer support, government schemes (RBI, PM-Kisan, income tax), or known relatives/friends —
How they take your money	UPI is the universal rail across all 87 records — exploited via collect requests where entering a PIN sends rather than receives money, malicious paym
Who they target	Targeting is broad-spectrum but with documented concentration on the elderly (digital unfamiliarity, dependency on caregivers), rural users and farmers (government-scheme pretexts), students and young

How they manipulate you

Urgency/scarcity bias — account deactivation, KYC expiry, or suspicious-transaction panic forcing immediate action
Authority bias — deference to bank, RBI, government, or army-officer personas
Trust-by-familiarity — cloned voices, family impersonation, and recognised brand logos exploit relational trust
Greed/reward anticipation — cashback, prizes, refunds, trading profits, and 'receive money' framing that inverts the payment direction

Warning signs

A UPI PIN is requested or required to 'receive' money — entering a PIN always sends money, never receives it
Unsolicited calls/messages claiming urgent account, KYC, or transaction issues from 'bank officials', 'customer support', or government bodies
Requests to install remote access or screen-sharing apps (e.g., AnyDesk/TeamViewer-type tools) to 'fix' a problem or process a refund
UPI ID or display name mismatches — slightly altered VPAs, extra characters, or misleading names like 'Verified Merchant' or 'Bank Refund Dept'
Pressure to scan unknown QR codes or click payment links sent via WhatsApp/SMS, often paired with prize, cashback, refund, or grant offers

Related Scams in India

Verify Any Suspicious Message

Check any suspicious message, link, or call for free at bharatsecure.app. BharatSecure uses AI to detect scams in real-time and protect Indian users.