A deeply alarming case of cyber fraud has surfaced from Navi Mumbai, Maharashtra, exposing a dangerous shift in the nature of online scams. A 62-year-old senior citizen was allegedly duped of nearly ₹64 lakh under the pretext of an insurance policy refund. What makes the case particularly disturbing is that the fraud was not executed in a single instance, but meticulously carried out over a span of four years.
According to the victim, the ordeal began in January 2022 with a WhatsApp call. The caller introduced himself as an official from an insurance regulatory authority and claimed he could help release the maturity amount of the victim’s policy. The conversation appeared professional and convincing, leaving the victim with little reason to doubt the caller’s authenticity.
Trust built gradually under the guise of ‘refund processing’
The fraudsters initially told the victim that certain formalities were required to process the refund, including the purchase of new insurance policies. Small payments were requested at first, which helped build trust and lowered suspicion.
FCRF Academy Launches Premier Anti-Money Laundering Certification Program
After some time, another individual contacted the victim, claiming to be the director of an “Integrated Grievance Management System (IGMS).” He assured the victim that all previously paid amounts would be refunded but insisted that additional steps—and payments—were necessary to complete the process. This layered approach gradually deepened the victim’s trust and involvement.
Money extracted under fabricated charges
The scammers continued to extract money under various pretexts, including “agent code removal fees,” “FDR charges,” and “state-level taxes.” Each time, the victim was reassured that this would be the final payment before the full refund was processed.
Over the course of four years, the victim and his brother transferred approximately ₹64 lakh through 32 separate transactions. The operation was executed with such precision that the victim remained unaware of the fraud for a long time.
Legal notice exposes the fraud
The scam came to light only when the victim received a legal notice from a police station in Kerala, stating that his bank account was allegedly being used for suspicious or criminal activities. This raised alarm, prompting the victim to review past transactions and report the matter to authorities.
A formal complaint was registered on April 20, and an investigation is now underway. Authorities are examining digital transaction trails, call records, and bank account details to identify and track down the accused.
Rise of ‘long-term scam’ tactics
This case highlights a growing trend in cybercrime where fraudsters adopt long-term strategies instead of one-time attacks. By gradually building trust and extracting money in phases, criminals reduce the chances of immediate suspicion.
Renowned cyber crime expert and former IPS officer Prof. Triveni Singh explains, “Cyber criminals today are using social engineering in a highly structured manner. They strengthen the victim’s trust over time and execute the fraud in installments. Posing as government officials or regulatory authorities significantly boosts their credibility, making this one of the most dangerous emerging trends.”
How to stay protected
Experts advise verifying the identity of any individual claiming to represent a government body or financial institution through official channels. Blind trust in unsolicited calls or messages can lead to serious financial loss.
Repeated demands for payments under different headings should be treated as a red flag. No legitimate authority will ask for multiple fees in a staggered manner to release funds.
Awareness remains the strongest defense
This incident underscores that cyber fraud today is not just technical—it is psychological. Criminals exploit trust, urgency, and financial expectations to trap victims over time.
Authorities stress the importance of reporting such incidents promptly, as early complaints improve the chances of tracking transactions and recovering funds. Ultimately, vigilance and awareness remain the most effective safeguards against evolving cyber threats.
