New Delhi: The Central Bureau of Investigation (CBI) has filed a comprehensive chargesheet against 17 accused individuals, including four foreign nationals, and 58 companies in connection with one of the largest transnational cyber fraud networks unearthed in India to date. The agency’s investigation revealed that this well-organized syndicate had created a complex digital and financial infrastructure to defraud thousands of unsuspecting citizens across multiple Indian states.
According to the CBI, the accused lured victims through fake loan applications, investment and multi-level marketing (MLM) schemes, Ponzi models, fraudulent gaming platforms, and bogus part-time job offers. The case was initiated following inputs from the Indian Cyber Crime Coordination Centre (I4C) under the Ministry of Home Affairs, which flagged a surge in coordinated online scams targeting Indian users.
What initially appeared as isolated complaints soon revealed a larger pattern when CBI analysts identified striking similarities in the mobile apps, fund flows, payment gateways, and digital footprints—all pointing toward a single, coordinated transnational operation.
A Highly Layered, Technology-Driven Fraud Network
Investigations uncovered that the cyber criminals employed Google Ads, bulk SMS campaigns, SIM-box based messaging systems, cloud infrastructure, and fintech platforms to conduct the scams. Each stage of the operation—from victim targeting and onboarding to fund collection and diversion—was meticulously structured to obscure the real masterminds and evade detection by regulatory and law enforcement agencies.
CBI found that the network relied on 111 shell companies, incorporated using forged documents, dummy directors, and fake addresses. These entities opened hundreds of bank and merchant accounts to route illicit funds through multiple layers.
In one instance, a single bank account received over ₹152 crore in a short span of time. The total proceeds of crime traced so far exceed ₹1,000 crore, routed through a maze of accounts to conceal the ultimate beneficiaries.
Foreign Control and Remote Operations
Forensic analysis revealed that the entire network was controlled from abroad. CBI identified that UPI IDs and associated bank accounts linked to the Indian accused were still active in foreign locations as late as August 2025, confirming real-time oversight from outside India.
The investigation has named four key foreign handlers—Zou Yi, Huan Liu, Weijian Liu, and Guanhua Wang—who allegedly directed operations from overseas. Beginning in 2020, these individuals instructed their Indian associates to incorporate fake companies using identity documents of unsuspecting citizens. These shell entities were then used to open accounts, move funds, and mask money trails, forming the financial backbone of the fraud.
Nationwide Raids and Seized Evidence
As part of the probe, CBI conducted searches at 27 locations across Karnataka, Tamil Nadu, Kerala, Andhra Pradesh, Jharkhand, and Haryana. The agency seized digital devices, laptops, mobile phones, company records, and financial documents, which were subjected to forensic analysis.
The examination revealed direct communication between the Indian operators and their foreign handlers, indicating continuous operational control from outside India. Several messages and transaction records confirmed that the syndicate used encrypted communication channels to coordinate activities and launder proceeds across multiple jurisdictions.
Legal Action and Broader Implications
The CBI has charged the accused under Sections 120B (criminal conspiracy), 420 (cheating), 468 and 471 (forgery and use of forged documents) of the Indian Penal Code, along with provisions of the Banning of Unregulated Deposit Schemes Act, 2019.
This case forms a crucial part of “Operation Chakra-V”, the agency’s ongoing crackdown on organized cyber-enabled financial crimes with international linkages. The operation aims to dismantle cross-border criminal ecosystems exploiting India’s growing digital payments infrastructure.
Senior CBI officials emphasized that the case is not merely a financial crime but a serious threat to national cyber security. The agency warned that the misuse of fintech tools, payment gateways, and online advertising platforms by foreign syndicates poses a systemic risk to India’s digital economy.
With multiple leads now under investigation and foreign coordination agencies alerted, the CBI is preparing to pursue mutual legal assistance to trace the masterminds operating from abroad. The agency maintains that the case is a landmark in India’s effort to combat transnational cyber fraud and safeguard its citizens from sophisticated digital deception.
