Digital payments have become a part of daily life. Whether it’s Paytm, PhonePe or Google Pay, transferring money takes just a few seconds. But the same convenience is now being misused by cybercriminals — who are targeting users and emptying their bank accounts.
According to the Future Crime Research Foundation (FCRF), UPI-related frauds have seen a sharp rise over recent months. The most common cases involve phishing links, fake refunds and manipulated QR codes.
Final Call: FCRF Opens Last Registration Window for GRC and DPO Certifications
Former IPS officer and cybercrime expert Prof. Triveni Singh explains:
“Fraudsters today are extremely tech-savvy. They pretend to be bank representatives, app support staff or even police officials. Out of fear, users share their OTP or UPI PIN — and the money vanishes.
Remember: You NEVER need a UPI PIN to receive money.”
Here are the safety rules every UPI user should follow:
1. Never share your UPI PIN with anyone
No bank, financial institution or government body will ever ask for your UPI PIN.
Scammers call pretending to process refunds or KYC updates and then ask for the PIN.
One golden rule: The moment you enter your PIN, money goes out — it never comes in.
2. Don’t click links promising refunds or rewards
Links received via WhatsApp, SMS or email may install malware on your phone, giving fraudsters access to your UPI apps.
FCRF notes that in many cases, users don’t even realize when multiple transactions start happening in the background.
3. Always verify details before scanning a QR code
When scanning a QR at a shop, parking area or service provider, double-check:
- Is the amount correct?
- Is the receiver’s name correct?
Fraudsters often paste fake QR stickers, diverting money to unknown accounts.
4. Set a transaction limit
Inside your UPI app settings, reduce your daily transaction limit.
If your phone or app is compromised, the limit can prevent major financial loss.
5. Don’t trust unknown calls
Scammers often use fear tactics — claiming:
- “Your KYC is blocked”
- “You’ve won a lottery”
- “You are under digital arrest”
Prof. Triveni Singh cautions:
“No genuine officer will ask for OTP, PIN or card details on the phone. If someone pressures or threatens you — disconnect immediately.”
6. Download UPI apps only from official app stores
- Avoid third-party websites or APK files.
- Android users — only Google Play Store
- iPhone users — only Apple App Store
Fake apps often look real — but are built to steal data.
7. Report fraud immediately
If money is deducted without your permission:
- Call 1930 right away
- File a complaint at cybercrime.gov.in
Early reporting increases the chances of freezing suspicious transactions.
Bottom line — “Don’t panic. Stay alert.”
Digital payments are safe — awareness makes them safer.
Your UPI PIN, OTP and banking details are like keys to your locker. Never share them with anyone.
As FCRF advises:
“Don’t click every link, don’t trust every call — and always review your transactions.”
