A job-seeker who pays a “training fee” to a fake LinkedIn recruiter promising a reputed-company offer letter, only to find the profile vanish hours after payment, faces a frightening but well-mapped legal situation—this guide documents the legal chain, an FIR template, statutory remedies under the Bharatiya Nyaya Sanhita 2023 and Bharatiya Nagarik Suraksha Sanhita 2023, and the Citizen Crisis Response Network protocol to try to recover money and prosecute offenders before digital trails go cold.
Citizen Crisis Response Network
Report quickly → freeze digital evidence → file NCRP + local FIR → preserve LinkedIn screenshots, payment receipts, chat logs → escalate to the Superintendent of Police if the police delay registering a cognizable offence.
Fake LinkedIn recruiters impersonate HR professionals from reputed firms, extract “training fees” or “background-verification charges”, then vanish. Victims should immediately file an FIR citing the relevant Bharatiya Nyaya Sanhita 2023 cheating and forgery sections plus Information Technology Act 2000 section 66D (cheating by personation using a computer resource), lodge a simultaneous National Cybercrime Reporting Portal (NCRP) complaint with transaction screenshots, notify LinkedIn through its in-app reporting flow, alert the bank's fraud desk to attempt a transaction freeze, and use the Citizen Crisis Response Network for evidence-preservation guidance before the recruiter deletes the profile.
Fake LinkedIn recruiter fraud has become one of the most common online job scams reported to cybercrime cells in India's metros. The modus operandi is consistent: a fraudster creates a LinkedIn profile mimicking the branding of a reputed IT or multinational firm, harvests résumés from public job-postings or InMail outreach, initiates contact via LinkedIn chat or WhatsApp (posing as a “Senior Talent Acquisition Manager”), schedules a perfunctory video interview, then issues a fake offer letter conditional upon payment of a fee labelled “training-module fee”, “EPFO deposit”, “background-verification charge”, or “onboarding platform access”.
Payment is demanded via UPI, NEFT, or cryptocurrency wallets. Within hours of receipt, the LinkedIn profile is deleted, the WhatsApp number becomes inactive, and emails bounce. Victims who query the legitimate company's HR desk discover no such vacancy existed.
The scam exploits three psychological levers: urgent job scarcity (freshers desperate post-graduation), credential mimicry (stolen logos, forged offer letters on pseudo-corporate templates), and normalised pre-employment fees (legitimate background-check vendors charge modest amounts, making a larger “fee” appear plausible to uninformed applicants).
Warning — Legitimate recruiters never demand upfront payment. Any fee request before the joining date is a red flag and can amount to cheating under the Bharatiya Nyaya Sanhita 2023.
The Bharatiya Nyaya Sanhita 2023 (BNS) replaced the Indian Penal Code with effect from 1 July 2024. Fake LinkedIn recruiter scams can engage multiple BNS sections:
The Bharatiya Nagarik Suraksha Sanhita 2023 (BNSS) replaced the Code of Criminal Procedure and governs the procedure:
The Ministry of Home Affairs' Indian Cybercrime Coordination Centre (I4C) coordinates inter-state cybercrime investigations. The National Cybercrime Reporting Portal (https://cybercrime.gov.in) is the central reporting platform under I4C.
Most citizens miss this — Filing an NCRP complaint does not replace the local FIR. Both are useful: NCRP for digital evidence-tagging and inter-state coordination, the local FIR for jurisdictional prosecution.
The Citizen Crisis Response Network prescribes an evidence-lock sequence the moment you suspect fraud:
1. Screenshot everything — LinkedIn profile (URL visible), chat logs, offer letter PDF, email headers (View → Show Original in Gmail), WhatsApp conversation including the recruiter's phone number and display picture, payment confirmation (UPI transaction ID, NEFT reference, bank SMS).
2. Report the LinkedIn profile — Use LinkedIn's in-app reporting flow (“Report a member” → “Fake profile” or “Scam or fraud”) and attach screenshots. See the LinkedIn Help Center at https://www.linkedin.com/help/linkedin for the current reporting and impersonation pathways.
3. File NCRP complaint — Visit https://cybercrime.gov.in → “Report Other Cybercrime” → category “Online Job Fraud” → upload all screenshots, enter transaction details, receive an acknowledgment number. NCRP routes the complaint to the jurisdictional Cyber Police Station.
4. Lodge local FIR — Visit the nearest police station or Cyber Cell as soon as possible. Cite the relevant BNS cheating and forgery sections and IT Act section 66D. Carry printouts of screenshots, bank statement, and the NCRP acknowledgment. Ask for the free FIR copy under BNSS section 173.
5. Notify your bank — Call the fraud helpline (numbers printed on your card / in your bank app) as soon as you discover the fraud. Request a transaction dispute and ask the bank to attempt to freeze the beneficiary account. Reporting promptly is critical for limited-liability and chargeback purposes under the RBI customer-protection framework.
6. Contact the Citizen Crisis Response Network — Use the hub at https://righttoinformation.wiki/citizen-crisis-response-network for current protocols and contact routes. Volunteers can help with FIR drafting, escalating police non-registration to the Superintendent of Police, and coordinating with I4C where the accused is inter-state.
Do this immediately — Payment platforms and intermediaries retain transaction and account metadata only for limited periods. The longer you wait, the harder it becomes to trace the beneficiary account. Speed is evidence.
Jurisdiction lies where the victim resides or where the accused operated (often unknown initially). Under BNSS 2023, any police station can register an FIR for a cognizable offence regardless of where the offence was committed (the “Zero FIR” principle); jurisdictional transfer happens after registration. If the Station House Officer (SHO) refuses registration calling it “a civil matter” or “too small an amount”, you can send the substance of the complaint in writing to the Superintendent of Police as the BNSS remedy for refusal.
NCRP filing steps:
NCRP complaints are routed to the jurisdictional Cyber Police Station. If there is no response, escalate to your State Nodal Officer, whose contact details are available through the “Contact Us” section of the portal at https://cybercrime.gov.in.
Citizen tip — Email the NCRP acknowledgment to yourself and print two copies: one for the local police FIR, one for your records. This documents that you acted promptly.
Digital evidence is fragile. LinkedIn, WhatsApp, and payment gateways purge logs after limited periods unless legally preserved. The Citizen Crisis Response Network evidence-preservation standard includes:
LinkedIn artifacts:
WhatsApp artifacts:
Payment artifacts:
Email artifacts:
Store all evidence in more than one place: a local drive folder, a timestamped cloud upload, and a physical backup (USB drive) for any court submission.
Trust signal — Under the Bharatiya Sakshya Adhiniyam 2023 (which replaced the Indian Evidence Act with effect from 1 July 2024), section 63 governs the admissibility of electronic records and requires a certificate for electronic evidence. Keeping originals intact and producing them with the required certificate supports the chain of custody when your FIR annexures, NCRP acknowledgment, and bank statement are filed.
LinkedIn's User Agreement and professional-community policies prohibit fake profiles and impersonation. Report through:
Digital forensics by Cyber Cells can reveal:
Where syndicates use platform server logs held abroad, investigators may seek records through Mutual Legal Assistance Treaty (MLAT) channels routed via the Ministry of Home Affairs.
The Reserve Bank of India's customer-protection framework limits a customer's liability for unauthorised electronic transactions where the customer reports promptly, and banks have dispute/chargeback mechanisms. Report to your bank without delay; the sooner you report, the stronger your position.
Chargeback protocol:
1. Immediate bank notification: call the fraud helpline (24×7 numbers on your card / in your app). Request a “transaction dispute” under the “fraud” category.
2. Written complaint: visit the branch promptly and submit a written complaint on the bank's format, attaching the FIR copy, NCRP acknowledgment, and transaction screenshot.
3. Bank investigation: the bank may attempt to freeze the beneficiary account (if still active) and raise a chargeback with the beneficiary bank. In practice recovery is difficult once fraudsters withdraw funds quickly, so speed matters.
4. Ombudsman escalation: if the bank rejects the dispute or delays unreasonably, file a complaint under the Reserve Bank – Integrated Ombudsman Scheme 2021 at https://cms.rbi.org.in. The ombudsman can direct compensation up to the limit prescribed under the scheme (₹20,00,000).
5. Consumer forum: you can also file a complaint under the Consumer Protection Act 2019 in the appropriate District Consumer Disputes Redressal Commission if there is deficiency in service by the bank in handling the dispute. The filing fee depends on the claim amount.
UPI-specific recovery:
UPI apps (PhonePe, Google Pay, Paytm) provide an in-app “Report” / dispute feature. Select the fraudulent transaction → “Report” → “Fraud” → provide the FIR number where available. The complaint is escalated to the beneficiary bank's Nodal Officer. As with chargebacks, success depends heavily on how quickly funds are flagged before they are withdrawn.
Warning — Do not delay. The longer the gap, the more likely the beneficiary account trail goes cold due to layered “money-mule” transfers across banks.
Indian jurisprudence on online recruitment fraud is still developing, and most reported prosecutions proceed under the general cheating provisions (now BNS section 318, earlier IPC section 420) read with Information Technology Act 2000 section 66D for cheating by personation using a computer resource. Courts have treated fake online profiles and forged offer letters as falling within these provisions.
In practice, conviction in online job-fraud cases is made harder by inter-state jurisdictional delays, the use of mule accounts, and the time taken to obtain platform and payment records. Prompt, well-documented reporting—FIR plus NCRP plus preserved digital evidence—materially improves the chances of a charge-sheet and of tracing the money before it is withdrawn.
Below is a template FIR complaint. Replace [PLACEHOLDERS] with your details:
To, The Station House Officer, [Police Station Name], [City, State, PIN] Subject: FIR against Fake LinkedIn Recruiter for Cheating and Cheating by Personation (BNS sections 318, 319, 336; IT Act section 66D) Respected Sir/Madam, I, [Your Full Name], son/daughter of [Father's Name], aged [Age] years, residing at [Full Address], Aadhaar No. [XXXX-XXXX-1234], mobile [+91-XXXXX-XXXXX], hereby lodge a formal complaint regarding cheating and fraud committed via the LinkedIn platform. FACTS: 1. On [Date], I received a LinkedIn connection request from a profile named "[Fake Recruiter Name]" claiming to be "Senior HR Manager - [Company Name]." Profile URL: [https://www.linkedin.com/in/XXXXX] (now deleted). 2. The recruiter contacted me via WhatsApp ([number]) on [Date], conducted a brief video interview on [Date], and on [Date] sent a fake offer letter (attached as Annexure-A) for the position of [Job Title] with monthly salary Rs.[Amount]. 3. The offer letter demanded payment of Rs.[Amount] as a "training module fee" to be remitted to UPI VPA [fraudster@upi] / Bank Account No. [XXXX-XXXX-1234], IFSC [XXXXXX], Account Holder Name [Fraudster Name]. 4. On [Date], I transferred Rs.[Amount] via [UPI / NEFT] (Transaction ID: [XXXXXXXXXXXXX], attached as Annexure-B). Immediately thereafter, the LinkedIn profile was deleted, the WhatsApp number became unreachable, and emails bounced. 5. I contacted [Company Name] HR desk ([[email protected]]) on [Date]; they confirmed no such vacancy or recruiter exists. 6. I filed NCRP complaint No. [acknowledgment number] on [Date] (attached as Annexure-C). 7. Total financial loss: Rs.[Amount]. I have been cheated by impersonation using computer resources. OFFENSES COMPLAINED OF: - Bharatiya Nyaya Sanhita 2023 section 318: Cheating (and dishonestly inducing delivery of property) - Bharatiya Nyaya Sanhita 2023 section 319: Cheating by personation - Bharatiya Nyaya Sanhita 2023 section 336: Forgery / forgery for the purpose of cheating - Information Technology Act 2000 section 66D: Cheating by personation by using a computer resource PRAYER: Kindly register an FIR under the above sections, investigate the matter, attempt to freeze the beneficiary bank account, obtain LinkedIn and payment records via lawful notice, and take necessary action as per law. I undertake to cooperate fully in the investigation and trial. Annexures: A. Fake offer letter PDF B. Payment receipt / bank statement C. NCRP acknowledgment D. LinkedIn profile screenshots E. WhatsApp chat export Place: [City] Date: [DD/MM/YYYY] Signature: ____________________ [Your Full Name]
Submit two copies: one for station records, one returned to you with the FIR number; you are entitled to a free copy of the FIR under BNSS section 173.
Do this immediately — If the SHO refuses to register the FIR, note the refusal, send the substance of your complaint in writing to the Superintendent of Police, and you may also approach the jurisdictional Magistrate with a private complaint. The Citizen Crisis Response Network can help with these escalations.
Yes. The local Cyber Cell registers the FIR and can then coordinate with foreign agencies through I4C and Mutual Legal Assistance Treaty (MLAT) channels routed via the Ministry of Home Affairs. The IT Act 2000 also has extra-territorial reach for offences involving a computer or computer resource located in India.
Try a cached copy via a search engine cache or the Wayback Machine and screenshot it. If you received InMail or messages, the platform may still hold server-side logs; once an FIR is registered, the Investigating Officer can issue a lawful production notice compelling the platform to produce records.
There is no guaranteed refund. Recovery is far more likely if you report within the first few days and the beneficiary account can be frozen before funds are withdrawn. Report to your bank immediately and follow up in writing.
Recovery depends largely on speed. If the accused is arrested and assets are traced, the trial court can order compensation to the victim. Many victims recover little or nothing once the money has been moved through mule accounts, which is why fast reporting and evidence preservation matter so much. A consumer-forum complaint against the bank for service deficiency is a separate route but takes time.
Intermediary liability is governed by the Information Technology Act 2000 section 79 and the Intermediary Guidelines Rules 2021. An intermediary is generally protected if it exercises due diligence and acts on valid notices/court orders within the timelines in those Rules. Individual lawsuits against the platform rarely succeed, but a registered FIR and lawful notices can compel disclosure of the fraudster's data.
The CCRN provides guidance on FIR drafting, evidence preservation, police escalation, consumer-forum filing, and RTI applications to track investigation status. Volunteers help coordinate with I4C, State Nodal Officers, and local Cyber Cells. See the hub at https://righttoinformation.wiki/citizen-crisis-response-network.
Login to https://cybercrime.gov.in → “Track your Complaint” → enter your acknowledgment number. If there is no movement for an extended period, escalate to your State Nodal Officer through the portal's contact section.
Yes. You can approach the jurisdictional Magistrate directly with a private complaint under the Bharatiya Nagarik Suraksha Sanhita 2023 (the Magistrate examines the complainant under section 223 before taking cognizance) and request a direction to the police to investigate. The Citizen Crisis Response Network can provide sample private-complaint drafts.
I4C can activate international cooperation channels (including Interpol where appropriate). Extradition from non-cooperating countries is difficult, but the domestic accomplice (for example, a mule-account holder) can still be prosecuted, and victim restitution may be sought from any seized assets.
| Myth | Reality |
|---|---|
| LinkedIn verifies all recruiter profiles before allowing job postings. | LinkedIn does not pre-verify ordinary profiles. Anyone can create a profile claiming any job title. Verification features do not confirm employment with a named company. |
| If I pay via UPI, the bank will automatically refund if fraud occurs. | Chargeback is not automatic. You must report promptly, file a written complaint, and provide an FIR copy. There is no guaranteed refund, and success drops sharply once funds are withdrawn. |
| Small amounts are too minor for police to register an FIR. | False. The BNS cheating sections have no minimum threshold, and BNSS section 173 makes registration mandatory when a cognizable offence is disclosed, regardless of amount. Refusal can be escalated to the Superintendent of Police. |
| Only cybercrime police can register an FIR for online fraud. | Any police station can register an FIR for a cognizable offence (Zero FIR). Jurisdictional transfer, if needed, happens after registration. Do not let local police refuse to register and merely redirect you. |
| Once the LinkedIn profile is deleted, evidence is lost forever. | Platforms may retain server logs for a period, obtainable by lawful notice after an FIR is registered. Search-engine caches and the Wayback Machine can also preserve snapshots. |
| Fake recruiters are always abroad; Indian police cannot act. | Many fake-recruiter operations run from within India, and even foreign operators often use Indian mule accounts—enabling domestic prosecution and tracing. |
Fake LinkedIn recruiter scams prey on job-seekers' urgency, but they leave prosecutable digital trails if victims act quickly. The statutory architecture—the Bharatiya Nyaya Sanhita 2023 cheating and forgery sections, the BNSS 2023 FIR-registration duty, Information Technology Act 2000 section 66D, the RBI customer-protection framework, and NCRP inter-state coordination—creates several pressure points for recovery and prosecution. Speed, documentation, and escalation discipline determine outcomes. The Citizen Crisis Response Network exists to close the information gap that fraudsters rely upon: when citizens know the law, invoke it precisely, and refuse bureaucratic inertia, their chances improve. Screenshot now, report immediately, demand your FIR copy, escalate delays, and act before the fraudster's trail goes cold.