Learn about eSIM frauds in India and how scammers hijack your phone number. Discover tips on how to protect your bank accounts and personal data from cybercriminals using eSIM scams.
As technology advances, so do the tactics used by cybercriminals. One emerging threat in India is eSIM fraud, a sophisticated scam targeting mobile users who use embedded SIMs (eSIM). eSIM technology has gained popularity as telecom providers like Airtel, Jio, and Vodafone now offer this option to customers. However, with its rise comes the risk of fraud, which can lead to financial loss.
Here’s a breakdown of how this scam works, the risks involved, and, most importantly, how you can protect yourself from an eSIM scam. But first, let’s understand what an eSIM is.
What is an eSIM?
An eSIM (embedded SIM) is a digital SIM that replaces the need for a physical SIM card. Unlike traditional SIMs, an eSIM can be activated online without requiring a visit to a telecom office. This added convenience allows telecom companies to remotely program, deactivate, or transfer the eSIM from one device to another. However, this same ease of use makes it susceptible to fraud if the correct precautions are not taken.
Is eSIM fraud a Cyber Crime?
Yes, eSIM fraud is a type of cybercrime in India. In this scam, fraudsters pose as customer care representatives and trick people into switching to eSIMs, potentially resulting in the theft of money and personal information
How is the eSIM Frauds Committed by Cybercriminals?
Fraudsters, posing as representatives from telecom companies, initiate the scam by calling mobile users, claiming to assist them in activating their eSIM. Here’s how the fraud unfolds:
- Impersonation: The scam starts with a phone call. The fraudsters claim to be from the customer care team of a telecom company and offer to assist in activating or transferring your eSIM.
- Activation Trap: They guide the victim to enter a 32-digit e-ID code into the telecom’s app or website.
- QR Code Phishing: Once this step is completed, the victim receives a QR code in their email. The fraudsters then request the victim to share this QR code via WhatsApp, claiming it’s necessary for eSIM activation.
- SIM Hijack: Using the QR code, the scammers activate the eSIM on their device, leaving the victim’s SIM deactivated. The fraudsters assure the victim that the SIM will be restored after 24 hours, but during this time, the scammers take full control of the victim’s phone number.
- The Consequences – Financial Exploitation: With access to the victim’s phone number, the fraudsters intercept OTPs and gain access to bank accounts, mobile wallets, and other services linked to the phone, enabling them to make unauthorized financial transactions.
What Makes eSIM Scams Dangerous?
Once scammers take control of your eSIM, they gain full access to your phone number. Any service linked to that number—such as banking, mobile wallets, and cloud accounts—is immediately at risk. With control over your number, scammers can receive OTPs (One-Time Passwords) for banking transactions, access your financial apps, and even compromise your cloud or social media accounts.
By intercepting SMS-based OTPs, fraudsters can carry out transactions and drain accounts before the victim even realizes it. The consequences can be devastating, putting both your bank accounts and personal data at serious risk
How to Stay Safe from eSIM Scams
Consider the following practices to avoid becoming a victim of eSIM scams:
- Always Follow Authorized Processes: When activating or transferring your eSIM, only send SMS messages or communicate with the authorized number provided by your telecom service provider.
- Do Not Share Your QR Code: Telecom companies will never ask you to forward your QR code for eSIM activation. Keep the code private and only use it for activating your eSIM through your registered email ID.
- Enable Two-Factor Authentication (2FA): If your eSIM is linked to banking apps, mobile wallets, or cloud platforms, ensure you have set up two-factor authentication (2FA) or two-step verification for all digital accounts. This adds an extra layer of security, even if your SIM is compromised.
- Monitor Your Phone’s Network Signals: If your phone suddenly stops receiving network signals, it could be a sign that your SIM has been deactivated or transferred. Contact your telecom provider immediately to confirm the status of your SIM to ensure your SIM has not been deactivated or transferred without your knowledge.
Real-Life Cases of eSIM Fraud in India
Case 1: Woman Loses Rs 27 Lakh in eSIM Scam
A resident of Noida, fell victim to an eSIM scam when she received a WhatsApp call from someone pretending to be a telecom customer care executive. Convinced by the caller’s explanation of eSIM benefits, she shared a verification code and was promised a physical SIM within a few days. However, she later discovered that her mobile number was deactivated and over Rs 27 lakh was stolen from her account. She reported the incident to the Noida Cybercrime Police Station, where a case was filed under sections 318 (4) and 319 (2) of the IT Act. Newslink is here!
Case 2: Hyderabad Man Loses Rs 1 Lakh After Scammers Activate eSIM Without OTP
A 30-year-old man from Hyderabad was defrauded of over Rs 1 lakh when scammers activated an eSIM in his name without requiring an OTP. The fraudsters tricked him into installing an APK file under the guise of a customer support application. After gaining access to his phone, they activated an eSIM on another device, intercepting his messages and calls. The victim only realized the fraud when he checked his bank statements after regaining network connectivity. Newslink is here!
Case 3: Kerala Police Issue Alert After 18 eSIM Scam Cases
The Kerala Police have issued a warning about eSIM fraud following 18 reported cases in the state. Scammers posing as customer care representatives convince victims to switch to eSIM by entering a 32-digit e-ID. The police report highlights that fraudsters gain access to victims’ bank details and financial information. A total of 97 complaints have been filed with the National Cyber Crime Portal, with over Rs 7 crore reported as swindled across various states. Newslink is here!
Conclusion
With the rise of eSIM fraud in India, it’s essential to be vigilant and aware of the tactics scammers use to gain access to your personal and financial information. By following the security measures outlined above – such as using complex passwords, enabling two-factor authentication, and closely monitoring SMS alerts—you can safeguard your phone and financial data from eSIM-related scams.
Stay vigilant and ensure that you are following best practices when using eSIM technology. Protect your mobile number, your bank accounts, and your personal data from the dangers of eSIM fraud. Stay informed and protect yourself from the evolving threats in the digital age.
…
This content is for general information only, not legal advice. For specific legal concerns, Lawfluencers can be contacted at hello@lawfluencers.com!
You may also join our social media community at linktr.ee/lawfluencers to stay updated on the latest trends, laws, and regulations shaping the Digital & Collaborative Economy.