MUMBAI — In a shocking case highlighting the growing menace of digital identity theft, a doctor from South Mumbai was duped of nearly ₹11 lakh after falling prey to a sophisticated eSIM-based cyber fraud. The South Region Cyber Police have arrested a 23-year-old man, identified as Rohan Waghmode, who received part of the defrauded money in his bank account. Authorities say the operation appears to be part of a larger cybercrime network using fake eSIM conversion calls to take over victims’ digital and banking identities.
The eSIM Trap: How the Fraud Was Executed
The victim, a doctor in his fifties, received a call on September 14 from a person claiming to represent his telecom provider. The caller offered to help him convert his physical SIM card into an eSIM, promising better network flexibility and digital convenience.
FCRF Launches CCLP Program to Train India’s Next Generation of Cyber Law Practitioners
Trusting the caller, the doctor followed the instructions, opening his telecom provider’s official app and requesting an eSIM. When he received a One-Time Password (OTP), he unknowingly shared it with the fraudster. The caller assured him the eSIM would activate within 24 hours, but it never did.
Two days later, the doctor received a notification that someone had accessed his email account at 8:39 a.m. The password and recovery details were changed, effectively locking him out. When he rushed to his bank, it was too late — ₹10.5 lakh had already been siphoned off through a series of rapid IMPS and UPI transfers to multiple accounts.
The Cyber Police Crackdown: One Arrest, Bigger Network Suspected
Acting swiftly, a team led by DCP (Cyber) Purushottam Karad, along with senior inspector Nandkumar Gopale and inspector Suresh Bhoye, traced the digital trail. Their investigation led them to Rohan Waghmode, an office boy at a private hospital in Pune.
Waghmode admitted that he had “rented out” his bank account to cybercriminals, handing over his passbook, chequebook, and debit card. In return, he was promised a 5% commission on every fraudulent transaction routed through his account. Approximately ₹34,000 from the doctor’s stolen funds had landed in his account before being quickly transferred out.
Police believe Waghmode was part of a mule network, where low-level operatives lend their bank accounts to fraudsters to disguise the money trail. A manhunt is underway to locate the mastermind behind the operation, suspected to be managing multiple linked accounts across cities.
The eSIM Threat: A New Weapon in Cybercrime
Investigators warn that eSIM-based fraud is an emerging cyber threat in India. Unlike traditional SIM swaps, eSIM scams allow fraudsters to remotely hijack a victim’s mobile identity, gaining access to OTPs, emails, and linked bank accounts. Once the physical SIM is deactivated, the victim’s phone stops receiving messages and alerts — making detection difficult until significant financial damage is done.
Cybersecurity experts are urging users to never share OTPs or confidential details, even if the caller claims to represent an official service provider. The case has reignited calls for stronger verification mechanisms and enhanced consumer awareness campaigns by telecom operators and banks.
Police Advisory: How to Stay Safe from eSIM and SIM-Swap Scams
Authorities have urged citizens to follow these precautions:
- Never share OTPs or personal credentials over the phone.
- Verify any SIM-related communication directly through the official telecom app or store.
- Immediately contact your bank if your SIM suddenly stops working or you lose network access.
- Enable multi-factor authentication on email and financial accounts.
The case underscores how India’s rapid digital adoption has also opened new frontiers for cybercriminals, who now exploit technology meant to make life easier.
