Fake Support Calls in India: Bank and KYC Impersonation
Indian consumers are frequently targeted by fraudsters impersonating bank representatives and demanding KYC (Know Your Customer) updates over phone. Victims who comply hand over OTPs and credentials that drain their accounts.
Part of: Fake Tech Support Calls
Last reviewed: 1 June 2026
India's rapid expansion of digital banking and UPI payments has outpaced consumer awareness of fraud tactics in many communities. Scammers exploit the widespread requirement for KYC updates at banks, inserting themselves as fake 'bank employees' who call customers about supposedly expiring KYC compliance.
The scale of these operations is significant: call centres operating illegally across multiple cities use customer databases obtained through data breaches or insider access to make personalised-sounding calls that carry false legitimacy.
How this scam works on India
A caller claims to be from the victim's bank and states that their account will be frozen unless they complete a KYC update immediately. They ask the victim to provide their full name, date of birth, Aadhaar number, and the OTP they will receive on their registered mobile. The OTP gives the scammer access to the bank account or UPI application, from which funds are immediately transferred.
Alternative scripts involve telling the victim that a new SIM card has been registered against their mobile number, or that a suspicious transaction has been blocked and needs verification. In each case, an OTP is requested, bypassing the bank's security.
Some operations are more sophisticated, directing victims to install remote access apps (such as AnyDesk or TeamViewer) under the guise of 'bank verification software,' giving the scammer live visual access to the victim's banking apps.
Common red flags
- Incoming call from someone claiming to be your bank asking for an OTP or Aadhaar details
- Caller creates urgency — account will be frozen or a transaction blocked unless you act now
- Request to install a remote access or screen-sharing app for 'bank verification'
- Caller knows your partial account or Aadhaar details, which they use to appear legitimate
- Request to share an SMS OTP you just received — no legitimate bank ever asks for this
- Call comes from a mobile number rather than the bank's official customer care number
How to protect yourself
- Hang up on any caller requesting OTPs, Aadhaar numbers, or CVV codes — legitimate banks never ask for these
- Call your bank back on the number printed on your debit card or the official website
- Never install AnyDesk, TeamViewer, or any remote-access app at a caller's request
- Register on the Do Not Disturb (DND) list with your telecom provider to reduce unsolicited calls
- Enable UPI transaction limits and SMS alerts on all bank accounts
- Educate elderly relatives who are disproportionately targeted by KYC impersonation calls
How to report it
- Report to the National Cyber Crime Reporting Portal at cybercrime.gov.in
- Call the National Helpline 1930 (Cyber Crime Financial Fraud) to report and attempt fund freezing
- File a complaint with your bank's official fraud line and request immediate account monitoring
Frequently asked questions
What is the 1930 helpline in India?
1930 is the National Helpline for Cybercrime Financial Frauds, operated by the Indian Cyber Crime Coordination Centre (I4C) under the Ministry of Home Affairs. Calling within hours of a fraud can help authorities freeze the destination account before funds are moved further.