New Delhi. A major cross-border cyber fraud network has been exposed after the Enforcement Directorate (ED) revealed that thousands of Indian SIM cards were being illegally operated from Cambodia and used to carry out large-scale financial frauds targeting victims across India.
Indian SIMs Operated From Cambodia
According to the investigation, around 36,000 Indian SIM cards were found active in Cambodia, out of which nearly 5,300 SIMs were directly linked to cyber fraud cases involving hundreds of crores of rupees. The probe indicates that these SIM cards were fraudulently activated in India and later routed to foreign handlers who used them for scam operations.
Registration Begins for FutureCrime Summit 2026, India’s Largest Cybercrime Conference
The ED, which is investigating the matter based on an FIR registered by the Cyber Police Station in Jodhpur, found that Point of Sale (POS) vendors had played a key role in the illegal activation and distribution of SIM cards. These vendors allegedly misused telecom operator systems to activate SIM cards in the names of unsuspecting individuals and then supplied additional SIMs to foreign operatives.
POS Vendors Under Scanner
As per findings, the SIM cards were later operated from Cambodia through WhatsApp calls and other internet-based communication platforms to execute cyber frauds across multiple Indian states. The agency stated that analysis of nearly 2.3 lakh mobile numbers helped trace the widespread misuse, eventually leading to the identification of the Cambodia-based network.
The investigation also revealed that several SIM vendors targeted less educated and vulnerable individuals under the pretext of SIM porting or issuing new connections. During this process, additional SIMs were allegedly activated without the knowledge of the users and later diverted to foreign entities, particularly individuals linked to Malaysian nationals operating from Cambodia.
The probe has identified several accused individuals, including Rahul Kumar Jha, Mohammad Sharif, Sandeep Bhatt, and other SIM vendors such as Prakash Bheel, Ramavatar Rathi, Hareesh Malakar, and Hemant Panwar. Authorities believe that these individuals acted in coordination with international handlers and earned commissions for each SIM card supplied.
Telecom Systems Allegedly Misused
Investigators further found that the SIM cards were activated using Point of Sale IDs associated with major telecom operators, including Airtel, Jio, and Vi. This misuse of telecom infrastructure enabled the fraud network to scale operations rapidly and remain largely undetected for a significant period.
The ED has also conducted search operations under the Prevention of Money Laundering Act (PMLA) at multiple locations, including Rajasthan’s Kishangarh and Jodhpur, as well as Nagpur and Ludhiana. During these raids, officials reportedly identified around 30 bank accounts and seized documents and assets linked to the accused persons.
Authorities believe that the network was part of a structured cyber fraud ecosystem where Indian SIM cards were exported to foreign locations and used to carry out scams involving fake investment schemes, phishing, and digital impersonation. The funds generated from these crimes were allegedly routed through complex banking channels to hide the money trail.
Cross-Border Scam Network Expands
Officials said the case highlights a growing trend of international cybercrime syndicates exploiting telecom loopholes and using Indian digital infrastructure for global fraud operations. The use of Indian mobile numbers increased the credibility of scams, making victims more likely to trust calls and messages originating from familiar country codes.
Cybercrime expert and former IPS officer Prof. Triveni Singh noted that such networks demonstrate how “trusted communication channels like Indian SIMs are being weaponised by cyber syndicates to build instant credibility with victims.” He further cautioned that organised gangs are increasingly combining telecom misuse with social engineering tactics to scale fraud operations across borders.
The agency continues to investigate the financial transactions, international links, and communication networks associated with the racket. Further action is expected as more evidence is being analyzed to map the complete structure of the fraud network and identify additional beneficiaries.
Authorities have also reiterated the need for stricter monitoring of SIM activation processes and stronger verification mechanisms to prevent misuse of telecom services for cybercrime activities.
