SIM card-based scams have emerged as a significant security threat in India, encompassing various sophisticated schemes that compromise users’ digital identities and financial assets. These fraudulent activities use multiple tactics, including phishing, social engineering, and data breaches to gain unauthorized access to victims’ personal information. The surge in these attacks comes despite India’s mandatory Aadhaar-based biometric verification system for new SIM cards, implemented to strengthen security measures.
One prevalent scheme is the SIM Block Scam, where victims receive messages claiming their SIM will be blocked unless they verify details or pay fees through potentially malicious links. “Cybercriminals use scare tactics to create panic, forcing individuals to act quickly without verifying the authenticity of the request,” said cyber expert Tushar Sharma of TOFEE. The pattern matches a broader global surge in mobile phishing attacks, which increased by 26 percent in 2024.
SIM Swap Fraud represents another significant threat, where criminals gather personal information through various means to impersonate victims and request SIM replacements from mobile service providers. In one notable case, a Mumbai businessman lost Rs 7.5 crore through such a scheme, though authorities managed to freeze Rs 4.65 crore before it was transferred. To combat this, the Telecom Regulatory Authority of India has mandated Calling Name Presentation (CNAP) Service across telecommunication networks.
SIM Cloning involves creating duplicate SIMs using specialized tools, enabling fraudsters to intercept communications and potentially implicate victims in criminal activities. Additionally, Fake KYC Verification Scams involve impersonating telecom company representatives to collect sensitive personal data under the guise of mandatory updates. In response, telecom providers like Vodafone Idea have implemented AI-powered spam detection systems to identify and flag suspicious communications.
The scale of these threats is substantial, with approximately 60 percent of Indians receiving at least three spam calls daily, exceeding the global average. Financial losses from cyber fraud have reached $113.3 billion. The Department of Telecommunications has identified 79.42 lakh fraudulent SIMs through analysis of 134 crore mobile connections, leading to the disconnection of 73.14 lakh SIMs and blacklisting of 70,895 connections. The department has also ordered social media platforms to remove caller ID spoofing tools by 2025 as part of its comprehensive security strategy.
Security experts emphasize vigilance regarding unexpected SIM deactivation, suspicious bank alerts, unusual calls or messages, and duplicate social media accounts. They recommend verifying all requests through official channels, particularly for KYC updates or similar sensitive procedures. The guidance comes as India continues to strengthen its digital identity infrastructure, including expanding Aadhaar authentication access to the private sector to enhance security measures.
Sources: The New Indian Express, The Indian Express, CyberPeace
Follow Us