A major international cyber fraud network has been uncovered in Gurugram, where illegal SIM box technology was being used to route calls and carry out cybercrimes across the country. Investigations have revealed that the racket was being operated from the Philippines, with local operatives managing on-ground execution in India. One accused, Rahul Kumar, has been arrested for his key role in supplying and handling the technical infrastructure of the network.
Raids Triggered by Tenant Complaints
The case came to light after two house owners in Gurugram reported suspicious activities by their tenants. Acting on these complaints, raids were conducted at the rented premises, leading to the recovery of illegal SIM box setups, also known as GSM gateways. These devices are commonly used to mask the origin of calls and bypass telecom monitoring systems.
Following the registration of two separate cases on March 17, authorities seized a large quantity of technical equipment during the raids. The recovered items included five SIM boxes—each fitted with 32 SIM port antennas—eight routers, 18 batteries, three UPS systems (inverters), and a total of 504 SIM cards belonging to multiple telecom operators. A mobile phone used in the operations was also confiscated.
FCRF Launches Premier CISO Certification Amid Rising Demand for Cybersecurity Leadership
Supply Chain from Philippines via Nepal
Investigations have further revealed that the racket operated through a well-structured international supply chain. SIM boxes and other equipment were transported from the Philippines to Nepal and then routed into India through Bihar. From there, the devices were distributed to various locations, including Gurugram, where rented houses were used as operational hubs to avoid detection.
Accused Rahul Kumar’s Role Exposed
The arrested accused, Rahul Kumar, is believed to have played a crucial logistical role. Based in Noida, he allegedly received the equipment and ensured its delivery to different locations. During interrogation, it emerged that he was in regular contact with a handler based in the Philippines, who provided instructions via video calls on how to install and operate the SIM box systems. This indicates that the entire operation was being remotely controlled.
Kumar also admitted to delivering the equipment in Gurugram and receiving around ₹15,000 in return. Investigators suspect that the payment trail is linked to foreign operators, further confirming the cross-border nature of the racket.
SIM box technology enables international calls to be converted into local calls, making it extremely difficult for authorities to trace their origin. This method is widely used in cybercrimes such as phishing calls, OTP fraud, and impersonation scams. By masking the true source of communication, cybercriminals are able to operate with greater anonymity.
Cybersecurity experts warn that such networks represent a dangerous convergence of technology and organised crime. Renowned cyber crime expert and former IPS officer Prof. Triveni Singh has stated that these gangs rely heavily on social engineering combined with technical manipulation to trap victims and evade detection.
Authorities have now expanded the scope of the investigation to identify other individuals linked to the network and assess the full scale of operations across different regions. Efforts are also underway to determine how many people may have been targeted using this setup.
The case once again highlights how cybercrime networks are increasingly operating beyond geographical boundaries. It underscores the urgent need for stronger inter-state coordination and enhanced international cooperation, along with robust technical surveillance mechanisms, to effectively curb such organised cyber fraud.
As the investigation progresses, more revelations are expected, which could further expose the depth and reach of this international cybercrime syndicate.
About the author – Ayesha Aayat is a law student and contributor covering cybercrime, online frauds, and digital safety concerns. Her writing aims to raise awareness about evolving cyber threats and legal responses.
