Mumbai: A new credit card fraud scheme in Mumbai has revealed how ordinary trust and small conveniences are being weaponized for large-scale digital theft. A roadside poster offering “cash withdrawals from credit cards” at a 2.5% commission led one unsuspecting man to lose ₹3.5 lakh — a reminder of how the simplest traps still thrive in a hyper-connected economy.
A Poster, a Promise, and a Trap
It began with a poster pasted on a street wall: “Credit card se cash paaiye, sirf 2.5% commission par.”. To a passerby, it looked like one of countless informal financial services scattered across Indian cities. But this one would cost a man his savings.
According to investigators, Bhojpuri actor and YouTuber Dilip Kumar Sahu is accused of orchestrating the ₹3.5 lakh scam. The operation started innocuously. A resident, tempted by the offer, saved the number listed on the poster and contacted it days later.
At first, the accused seemed credible. To win the victim’s trust, he performed a small transaction — debiting ₹500 and then returning ₹19,500 out of ₹20,000. Convinced the service was genuine, the victim later shared his credit card details and OTP. Within hours, his account was drained through a string of unauthorized transactions. Not a rupee came back.
How the ‘Cash-for-Credit’ Trap Works
Cybersecurity experts say such frauds rely less on sophisticated hacking and more on psychological manipulation — exploiting need, greed, and trust.
“Once someone has your card number, expiry date, and CVV, they can make purchases on any international payment gateway,” explained Rahul Mishra, a cyber-security analyst quoted in the Bhaskar report. “That’s why it’s essential to hide or mask those details.”
Many frauds, he added, originate in ordinary spaces — malls, fuel stations, or even CCTV footage capturing exposed cards at counters. In this case, an old-fashioned roadside advertisement proved as effective as any phishing link.
Expanding Card Fraud Problem
India’s financial ecosystem is digitizing rapidly, but cyber-literacy hasn’t kept pace. Police officials say that “cash-through-card” scams are now among the most reported cyber complaints in metro areas. Fraudsters pose as bank representatives threatening to block cards or requesting OTPs for verification — something legitimate banks never do.
Mishra warns that fraudsters often combine multiple techniques: phishing emails that mimic real payment gateways, malware that harvests credentials, and social engineering scripts that play on fear or urgency. Victims, especially those with multiple digital accounts, may not notice for days unless they monitor their statements closely.
“Checking your transaction history monthly is non-negotiable,” Mishra said. “If a suspicious payment appears, immediate reporting can prevent deeper financial loss.”
Ten Practical Tips to Avoid Credit-Card Fraud
-
Never Share Card Details or OTPs. Banks do not request these — ever.
-
Verify Every Offer. Call customer care via official websites, not numbers on ads.
-
Hide CVV and Shield PIN Entry. Physically cover sensitive information during transactions.
-
Limit International Use. Keep overseas transaction permissions off when not required.
-
Turn on Real-Time Alerts. Monitor every debit or authorization instantly.
-
Check Statements Monthly. Early detection prevents cascading losses.
-
Avoid Clicking Suspicious Links. Always type URLs yourself; ensure they begin with “https://”.
-
Use Trusted Gateways Only. Stick to bank-verified portals and official apps.
-
Set Spend Limits. Cap transaction values through your banking app for extra protection.
-
Report and Block Immediately. At the first sign of fraud, contact your bank and lodge a cybercrime complaint at cybercrime.gov.in.
