Fraud isn’t tech news—it’s daily life. A courier call, a KYC link, a “refund” QR code. The goal of this guide is simple: recognise the script, respond fast, and harden your phone. No jargon.
The Big Five Scams (and the one-line defence)
1) “Digital Arrest”
A video call claims you’re in a crime case. They keep you on camera, demand “verification” payments.
Defence: There is no digital arrest in Indian law. Hang up → 1930 → cybercrime.gov.in.
2) UPI Collect & QR “Refunds”
A stranger sends a QR or Collect request: “approve to receive money.”
Defence: Collect/QR = you pay. The money you receive needs no action from you.
3) Remote-Help / Screen-Share
“Install this app; I’ll fix your KYC/bonus.”
Defence: Never screen-share banking/UPI. Uninstall helper apps; reset UPI PINs.
4) Easy-Earnings & Fake Jobs
“Like/comment to earn,” “deposit to unlock tasks,” or shady overseas jobs.
Defence: No deposits, no KYC selfies. If they ask for money first, it’s a farm.
5) Loan-App Harassment
Tiny loans, massive fees, access to contacts → threats & blackmail.
Defence: Delete, revoke permissions, report on the portal, warn contacts not to pay.
The Golden Hour Plan (after a bad click or payment)
First 15 minutes
- Call 1930 (national cyber helpline).
- File on cybercrime.gov.in (txn IDs, screenshots, numbers).
- Alert your bank’s fraud line; request a freeze/hold on the beneficiary chain.
Next 45 minutes
4) Change email password first, then bank/app passwords; enable 2-step verification everywhere.
5) Remove unknown devices/sessions from WhatsApp/Google/Apple.
6) If KYC may be leaked, ask the bank for heightened monitoring; consider credit alerts.
Pin this: 1930 and cybercrime.gov.in in your family WhatsApp group description.
Daily Phone Hygiene (boring but undefeated)
- Lock WhatsApp with fingerprint/Face ID + two-step PIN.
- Turn on 2FA (or passkeys) for email, bank, and social apps.
- Use separate emails: banking vs shopping/social.
- Update phone/apps monthly; uninstall what you don’t use.
- Never install APK files from links/Telegram.
- Disable SMS previews on lock screen; OTP peeks fuel SIM-swap.
- Check email auto-forwarding rules; attackers set these quietly.
- Keep a local list of official bank numbers—don’t Google in a panic.
- Treat urgency as a red flag; verify by calling a saved number.
Family Drill (10 minutes, once)
- Say it out loud: No OTP • No screen-share • Verify before paying.
- Practice hanging up on a fake “police/courier” call and dialing 1930.
- Enable 2-step login on everyone’s WhatsApp and main email.
- Screenshot and save helplines + account last-4 digits for quick reference.
Myths vs Facts
- “Caller ID shows police; must be real.” Spoofing is easy.
- “Approving UPI Collect is harmless.” It’s a payment going out.
- “Helper app for 2 minutes only.” That’s full-screen control.
- “After paying, nothing can be done.” Many recoveries happen if you act fast.
One last thing
Cybercrime thrives on speed and fear. Your counter is pause and verify. Lock your apps, slow down when someone demands urgency, and memorize 1930. Share this guide with your family today—because prevention is cheaper than refunds.
