A large, multi-layered cyber crime network has been unearthed in Uttar Pradesh’s Mirzapur, where an interstate gang was stealing mobile phones from across the country and funnelling them into organised cyber fraud operations. Eight accused have been arrested, and 11,605 mobile phones—valued at nearly ₹1 crore—have been recovered from their possession.
The Arrests and Massive Haul
Investigations reveal that the gang was not merely involved in theft but operated as a structured “data syndicate.” The arrested accused have been identified as Mohammad Anarul, Mohammad Dil Faraz, Sitabul, Haseebur Rahman, Sabir Alam, Mohammad Ahmad, Mohammad Hasan and Mohammad Shafiq, all residents of Bihar’s Katihar and Purnia districts.
The crackdown followed a tip-off, after which a truck was intercepted near a toll plaza. A massive consignment of mobile phones was recovered during the search, exposing the scale and structure of the network. Preliminary findings indicate that the gang had a widespread presence across multiple major cities and systematically collected stolen devices for further processing and distribution.
FutureCrime Summit 2026 Calls for Speakers From Government, Industry and Academia
Deceptive Modus Operandi as Delivery Agents
The modus operandi was both calculated and deceptive. Members of the gang rented accommodations in cities such as Hyderabad, Bengaluru, Chennai and Mumbai, where they posed as delivery agents for e-commerce platforms. This cover allowed them easy access to residential neighbourhoods without raising suspicion. They would observe routines, identify potential targets, and steal or snatch mobile phones at opportune moments.
Extracting Data from Motherboards for Cyber Fraud
What sets this case apart is the technical layer of the operation. Investigators found that the stolen phones were transported to Bihar, where data was extracted directly from their motherboards. This advanced technique enabled the gang to retrieve critical information even from damaged or non-functional devices. The extracted data reportedly included contact lists, personal messages, OTPs and sensitive banking details.
The data was then either used for committing cyber fraud or sold to other cyber criminals. Agencies have also found indications linking this network to the notorious cyber fraud hubs of Jamtara in Jharkhand. It is suspected that both the stolen devices and harvested data were supplied to phishing and banking fraud syndicates operating from the region, enabling large-scale targeting of victims across the country.
Investigations further suggest that the gang members were technically trained and possessed specialised knowledge of mobile hardware systems. This capability allowed them to move beyond conventional theft and integrate into a larger cybercrime ecosystem driven by data exploitation.
Ongoing Probe and Expert Insights
Following the arrests, efforts are underway to trace other members of the network and map its wider connections. Authorities are also examining the extent of financial fraud linked to the stolen data and identifying the number of victims impacted by the operation.
Renowned cyber crime expert and former IPS officer Prof. Triveni Singh said such cases highlight the convergence of “social engineering and physical access” in modern cybercrime. According to him, a mobile phone today serves as the core of an individual’s digital identity, and once compromised, the extracted data can be exploited for large-scale financial and identity-related crimes.
The investigation is ongoing, and officials believe more significant revelations may emerge in the coming days, potentially exposing deeper layers of the nationwide cyber fraud network.
About the author – Ayesha Aayat is a law student and contributor covering cybercrime, online frauds, and digital safety concerns. Her writing aims to raise awareness about evolving cyber threats and legal responses.
