Sextortion Scam Recovery India (2025–26)

Sextortion scams in India follow a familiar pattern: a fraudster befriends you on a dating app or social media, lures you into a video call, secretly records or fabricates an intimate clip, and then threatens to send it to your family and colleagues unless you pay. Victims, often professionals, transfer money in panic before realising that the National Cybercrime Reporting Portal and the criminal law give them a clear path to stop the blackmail and try to recover funds.

If you are being blackmailed right now

Do not pay. Take three immediate steps: (1) Screenshot all communications, (2) report to https://cybercrime.gov.in and (3) call 1930 (the national cybercrime helpline) or approach your local cyber police station with the evidence. Fast action in the first 24–48 hours improves the chance of freezing the money and identifying the perpetrator. Extortion is an offence under the Bharatiya Nyaya Sanhita 2023 (Section 308), and capturing or sharing private images can attract voyeurism (Section 77) and IT Act provisions. This guide is the step-by-step roadmap. See also the on-site Citizen Crisis Response Network hub.

1. Immediately stop all payment and communication with the blackmailer. 2. Preserve evidence: take full screenshots (including timestamps, phone numbers, payment details) of every message, email, or video call. 3. File an online complaint at https://cybercrime.gov.in (National Cybercrime Reporting Portal) as soon as possible. 4. Call 1930 to request a freeze if you have already paid. 5. Visit your local cyber police station to register an FIR under BNS Section 308 (extortion) and the relevant IT Act provisions (such as Section 66D) if applicable. 6. Block the perpetrator on all platforms and enable two-factor authentication on social media. 7. Consult a cybercrime lawyer if the scam involves workplace or family disclosure threats requiring anticipatory legal protection.

• What is sextortion and how scams operate in India
• Legal framework BNS 2023 and IT Act
• Immediate crisis response checklist first 48 hours
• Filing FIR and NCRP complaint step by step
• Evidence preservation and digital forensics
• Fund recovery mechanisms and bank freeze procedures
• Social media platform cooperation and content takedown
• Psychological support and witness protection
• How Indian courts treat sextortion
• Myth vs reality sextortion scam misconceptions
• Sample FIR text and legal notice templates
• Frequently asked questions

Sextortion is a form of cyber blackmail where perpetrators threaten to publish or distribute intimate images, videos, or fabricated pornographic content unless the victim pays money or performs sexual acts. The National Cybercrime Reporting Portal (NCRP) receives a large volume of cyber blackmailing and sextortion complaints every year. The typical modus operandi involves: (1) initial contact via dating apps, Facebook, Instagram, or WhatsApp; (2) rapid trust-building and requests for video calls or image exchange; (3) screen recording or deepfake creation; (4) immediate blackmail threats citing family members or workplace details obtained via social engineering; (5) payment demands via UPI, cryptocurrency, or gift cards with escalating threats if the victim delays.

Press reports and police advisories repeatedly link organised sextortion gangs to known cybercrime hubs in parts of Jharkhand, Rajasthan and other states, where coordinated groups share victim databases and technical methods. The Indian Cybercrime Coordination Centre (I4C) under the Ministry of Home Affairs coordinates the national response, including the NCRP portal and the 1930 helpline. Importantly, in many cases the “intimate video” shown to a victim during a call is a pre-recorded clip or screen recording, not real footage of the victim—so do not assume the scammer actually holds your content.

Warning — Scammers research your Facebook friends list, LinkedIn colleagues, and Instagram followers before first contact, enabling them to name specific relatives or managers. This creates panic and perceived legitimacy. Do not assume they have more information than what is publicly visible on your social media profiles.

The Bharatiya Nyaya Sanhita 2023 (BNS) Section 308 criminalises extortion: whoever intentionally puts a person in fear of injury, and thereby dishonestly induces that person to deliver property or valuable security, commits extortion. The base offence is punishable with imprisonment that may extend to seven years, or fine, or both, with graded sub-sections for threats of injury, death, or grievous hurt—directly relevant to sextortion threats.

The new criminal codes came into force on 1 July 2024: the Bharatiya Nyaya Sanhita (BNS) replaced the Indian Penal Code, the Bharatiya Nagarik Suraksha Sanhita (BNSS) replaced the CrPC, and the Bharatiya Sakshya Adhiniyam (BSA) replaced the Indian Evidence Act. Offences committed before 1 July 2024 are still prosecuted under the IPC, so older sextortion cases run under the IPC and the rest under the BNS. The key statutory provisions are:

Bharatiya Nyaya Sanhita 2023:

• Section 308 — Extortion. The base offence is punishable with imprisonment up to 7 years, or fine, or both; graded sub-sections cover putting a person in fear of injury, death, or grievous hurt, with higher punishment for the more serious threats.
• Section 77 — Voyeurism (watching or capturing the image of a woman engaging in a private act, or sharing such an image, without consent). Punishment on first conviction is 1 to 3 years and fine; on a subsequent conviction, 3 to 7 years and fine.
• Section 78 — Stalking, including monitoring a woman online or repeatedly contacting her against her wishes (up to 3 years and fine on first conviction).

Information Technology Act 2000 (as amended 2008):

• Section 66D — Cheating by personation using a computer resource (imprisonment up to 3 years and fine up to ₹1 lakh).
• Section 66E — Violation of privacy by capturing, publishing, or transmitting an image of a private area without consent (imprisonment up to 3 years, or fine up to ₹2 lakh, or both).
• Section 67 — Publishing or transmitting obscene material in electronic form (imprisonment up to 3 years and fine up to ₹5 lakh on first conviction).
• Section 67A — Publishing or transmitting sexually explicit material in electronic form (imprisonment up to 5 years and fine up to ₹10 lakh on first conviction).

Consumer Protection Act 2019: Where sextortion occurs through a commercial platform with paid features, a victim may, in appropriate cases, raise a service-deficiency claim if the platform failed in its duties. The National Consumer Disputes Redressal Commission has jurisdiction over claims exceeding ₹2 crore, with State and District Commissions handling lower-value claims.

The Digital Personal Data Protection Act 2023 has been enacted; it will impose data fiduciary obligations on platforms once the rules are notified and the Data Protection Board is operational. Until then, treat the DPDP route as forthcoming rather than presently available.

Most citizens miss this — You can pursue parallel remedies: a criminal FIR under BNS Section 308, an IT Act complaint (such as Section 66D or 66E), a civil defamation suit for damages, and, where applicable, a consumer complaint against the platform. These are cumulative, not mutually exclusive.

In Shreya Singhal v. Union of India (2015) 5 SCC 1, the Supreme Court clarified that intermediaries are obliged to take down unlawful content on receiving a court order or a notification from the appropriate government agency, and read down the safe-harbour scheme accordingly. This is the leading authority on platform takedown obligations in India.

Time-critical actions in the first 48 hours determine recovery success rates. Follow this operational sequence:

Hour 0–2 (Immediate shutdown):

1. Stop all communication with the blackmailer. Do not negotiate, plead, or send additional payments.
2. Do not delete any messages, call logs, or transaction records. These are evidence.
3. Switch your phone to airplane mode if you fear remote access (rare, but possible if you installed any APK file sent by the scammer).
4. Inform one trusted family member or friend immediately—isolation benefits the scammer.

Hour 2–6 (Evidence preservation):

1. Take full-page screenshots of all WhatsApp chats, including the perpetrator's phone number, profile picture, and “About” section.
2. Screen-record Telegram, Instagram DM, or Facebook Messenger conversations using your phone's native screen recorder.
3. Photograph your bank statement showing the fraudulent transactions with timestamps.
4. Save any emails or SMS messages to a separate folder; forward them to your own alternate email for backup.
5. Note down: exact date and time of first contact, platform used, perpetrator's username/number, amount demanded, amount paid (if any), payment method (UPI ID, bank account, crypto wallet address).

Hour 6–24 (Official reporting):

1. File an online complaint at https://cybercrime.gov.in (National Cybercrime Reporting Portal). Attach all evidence files and note your acknowledgment number.
2. Call 1930 (national cybercrime helpline) to request an urgent freeze if you have transferred money recently.
3. Simultaneously, visit your local cyber police station or jurisdictional police station to register an FIR. Carry printouts of screenshots and a USB drive with all evidence. Request an FIR under BNS Section 308 and the applicable IT Act provisions.

Hour 24–48 (Platform reporting and financial action):

1. Report the perpetrator's profile on the platform: Instagram (Report > It's a scam), WhatsApp (Report and Block), Telegram (Report Spam and Block).
2. If you paid via UPI, immediately call your bank's customer care and report the fraud (a reversal is only possible if the beneficiary has not yet withdrawn the money).
3. Enable two-factor authentication on all social media accounts and change passwords.
4. Deactivate (not delete) your Facebook profile temporarily if the scammer has screenshots of your friends list.

Do this immediately — The NCRP portal connects to the Citizen Financial Cyber Frauds Reporting and Management System (CFCFRMS), through which banks can attempt to freeze beneficiary accounts. The sooner you report, the better the chance of stopping the money before it is withdrawn through mule accounts.

National Cybercrime Reporting Portal (NCRP) online complaint:

1. Visit https://cybercrime.gov.in and choose the appropriate complaint category. The portal has dedicated categories for crimes against women and children; for other sextortion cases use “Report Other Cyber Crime”. 2. Use the anonymous option if you fear social stigma (police will contact you via phone), or file a regular complaint for faster action. 3. Choose the incident sub-category that fits cyber blackmail / threatening. 4. Enter incident details: date, time, platform, perpetrator's phone number / username / UPI ID. 5. Upload evidence files: screenshots (JPEG/PNG), screen recordings (MP4), bank statement (PDF), within the portal's size limits. 6. If you paid money, use the financial fraud option and enter the transaction ID, amount, and beneficiary details. 7. Submit and note the acknowledgment number. You will receive an SMS and email confirmation. 8. Track the status at https://cybercrime.gov.in using your acknowledgment number and mobile number.

Filing FIR at a cyber police station:

Most districts now have a dedicated cyber police station or a cyber cell within the city police commissionerate. If no cyber station exists in your area, approach your jurisdictional police station; under BNSS 2023 Section 173, information about a cognizable offence must be recorded, and a Zero FIR can be lodged at any police station regardless of jurisdiction.

Draft a written complaint (see sample template below) containing:

• Your name, address, phone, email, occupation.
• The perpetrator's details: phone number, username, profile link, UPI ID, bank account (if known).
• A chronological sequence of events (first contact to extortion demand).
• Screenshots and evidence (attach printouts plus a USB drive).
• The legal sections: “I request an FIR under BNS Section 308 (extortion), IT Act Section 66D (cheating by personation), Section 66E / Section 67A where applicable.”
• A prayer: “I request immediate investigation, freezing of beneficiary bank accounts, arrest of the accused, and recovery of the extorted funds.”

Hand over two copies—one for police records, one stamped copy for your records. Insist on FIR registration. If it is refused, you may escalate in writing to the Superintendent of Police under BNSS Section 175, or file a complaint via your state police website.

Citizen tip — If the police officer hesitates to register an FIR, calling it “a civil matter,” remember that under BNSS 2023 Section 173 every information relating to a cognizable offence must be reduced to writing. Extortion is a cognizable offence.

The admissibility of digital evidence is now governed by the Bharatiya Sakshya Adhiniyam 2023 (Section 63 deals with electronic records), which corresponds to Section 65B of the old Indian Evidence Act 1872. To ensure your screenshots and recordings are legally usable:

Screenshot requirements:

1. Capture the entire screen including date/time, battery indicator, and network signal—these metadata elements help establish authenticity.
2. Use native phone screenshot tools (Power + Volume Down on Android; Side button + Volume Up on iPhone). Avoid third-party apps that may alter metadata.
3. Do not crop or edit screenshots. If you must highlight a section, create a separate annotated copy but preserve the original.

Chain of custody:

1. Transfer all evidence files to a password-protected folder on your laptop and an external USB drive.
2. Generate an SHA-256 hash of each file (for example, the Terminal command shasum -a 256 filename on Mac). The hash helps prove the file has not been altered.
3. Maintain a logbook: file name, date created, hash value, storage location.

Electronic-records certificate: For electronic evidence to be admissible, a certificate is generally required identifying the device and confirming the output is accurate (Section 63 BSA / former Section 65B(4)). In Arjun Panditrao Khotkar v. Kailash Kushanrao Gorantyal (2020) 12 SCC 1, the Supreme Court held that this certificate is mandatory where the original device is not produced, though a party who cannot obtain the certificate despite asking may apply to the court for it. Your lawyer will draft the certificate, signed by you as the device owner or by a forensic expert if police image the device.

Police forensic analysis: Once the FIR is registered, the investigating officer may seize your phone for forensic cloning. Insist on:

1. Cloning rather than long retention of your physical phone.
2. A hash-verified forensic image created by a certified cyber forensic examiner.
3. A written acknowledgment for any device handed over.

State Forensic Science Laboratories can take several weeks to months for forensic reports; ask the investigating officer to mark the case as time-sensitive.

Trust signal — Ask your investigating officer to follow a proper chain-of-custody process for the device image (hashing with SHA-256, write-blockers for imaging). Documented, hash-verified handling raises the evidentiary standard at trial.

If you have already transferred money, recovery depends on speed. The Citizen Financial Cyber Frauds Reporting and Management System (CFCFRMS) links banks, payment intermediaries and police to attempt rapid freezing of fraud proceeds.

Immediate freeze request (0–24 hours):

1. Call 1930 and provide: your name, transaction date/time, amount, beneficiary UPI ID or bank account number, and the UTR (Unique Transaction Reference) number from your bank statement.
2. The helpline raises a request alerting the beneficiary bank to attempt to hold the funds.
3. Simultaneously file the NCRP complaint and mention “fund freeze requested via 1930 on [date/time].”

Police-initiated freeze (24–72 hours):

1. Once the FIR is registered, the investigating officer can issue a written request to the beneficiary bank's nodal officer to freeze the account and provide account-holder details.
2. Frozen funds are typically held pending investigation.

Recovery and refund:

1. If the account still holds the funds, the investigating officer can apply to the jurisdictional Magistrate for release of the money to you.
2. If the funds have been withdrawn, recovery depends on tracing mule accounts and the money trail, which is harder and slower.
3. If the perpetrator is convicted, the trial court may order compensation to the victim in addition to any fine.

Civil recovery suit: You may file a civil suit for recovery of money—for example, a summary suit under Order 37 of the Code of Civil Procedure 1908—in the jurisdictional court, claiming the amount paid plus interest and costs. Attach the FIR copy and bank statements. A civil suit can run parallel to the criminal case.

Most citizens miss this — Even if the perpetrator is never arrested, you can obtain an ex-parte decree and use it later to attach any bank account or property traced to the accused. A money decree is generally enforceable for 12 years under the Limitation Act 1963.

You can also use the on-site RTI drafter tool to prepare an RTI application to your state police seeking the status of your FIR, subject to the exemptions that apply to ongoing investigations.

If the scammer threatens to post intimate images or videos, you have remedies for takedown and to fix platform liability.

Preventive takedown under the IT Act and IT Rules 2021:

1. Use the platform's in-app “Report” function: Instagram (Report > Bullying or Harassment), Facebook (Report > Privacy Violation).
2. Send a written complaint to the platform's Grievance Officer (mandatory under the IT Rules 2021). Significant social-media intermediaries must publish Grievance Officer contact details and resolve complaints within the timelines set by the Rules.
3. Your notice can cite IT Act Section 79 (safe harbour and the duty to act on a court order or government notification), Section 67A (sexually explicit content) and Section 66E (privacy), and demand suspension of the perpetrator's account and preservation of IP/device logs for police.

If content is already posted:

1. File an NCRP complaint specifying the URL where the content appears.
2. The competent authority can issue a blocking direction under IT Act Section 69A in accordance with the prescribed procedure.
3. Send takedown notices to the hosting website. For non-consensual intimate imagery hosted abroad, also use the platform's own non-consensual-image reporting channels.

Platform liability: As clarified in Shreya Singhal v. Union of India (2015) 5 SCC 1, an intermediary's safe harbour under Section 79 is tied to acting on a court order or appropriate government notification. Where a platform fails to act despite proper notice, that failure can be raised before the court; in suitable cases a consumer complaint for deficiency of service may also lie.

Warning — Do not hire “reputation management” agencies that promise to “scrub” your content from the internet for large fees. Many are themselves scams. Legitimate takedowns happen through platform reporting and legal notices. The Indian Cyber Crime Coordination Centre (I4C) provides free guidance via https://cybercrime.gov.in.

Sextortion can cause severe psychological distress: anxiety, depression, suicidal thoughts, and post-traumatic stress. You are not alone, and free help is available.

Immediate mental health resources:

1. iCALL Psychosocial Helpline (TISS): 9152987821 (Monday–Saturday) — free tele-counselling by trained counsellors. Email [email protected].
2. Tele-MANAS (Government of India): 14416 or 1-800-891-4416 — 24/7 national tele-mental-health support, coordinated through NIMHANS, Bengaluru.
3. State Legal Services Authority (SLSA): free legal aid. Find your district authority via https://nalsa.gov.in.

Witness protection: If you fear retaliation or social ostracism, ask the investigating officer about protection measures, including keeping your identity confidential in records and seeking in-camera proceedings. India has a Witness Protection Scheme (2018), approved by the Supreme Court, which courts and police can invoke in appropriate cases.

For offences against women involving sexual content, the law restricts public disclosure of the victim's identity, and trials of certain sexual offences are conducted in-camera. Ask your lawyer to seek these protections.

Do this immediately — If you are having suicidal thoughts, call Tele-MANAS at 14416 (24/7), or the Vandrevala Foundation helpline at 1860-2662-345. You are not alone; sextortion is a crime, and it is not your fault.

You can also reach the on-site Citizen Crisis Response Network hub for related guides and links.

Sextortion sits at the intersection of extortion, voyeurism and information-technology offences, so prosecutions typically combine BNS Section 308 with IT Act provisions such as Sections 66D, 66E and 67A, and (where a woman's privacy is invaded) BNS Section 77.

Two well-settled Supreme Court authorities are directly useful to victims:

• Shreya Singhal v. Union of India (2015) 5 SCC 1 — the leading case on intermediary liability, establishing that platforms must act on a court order or a government notification to take down unlawful content. This underpins takedown demands against social-media platforms.
• Arjun Panditrao Khotkar v. Kailash Kushanrao Gorantyal (2020) 12 SCC 1 — the leading case on electronic evidence, holding that a certificate (formerly Section 65B(4) of the Evidence Act, now Section 63 BSA) is mandatory where the original device is not produced. This governs how your screenshots and recordings are proved in court.

Sentencing in sextortion cases depends on the specific offences proved and the aggravating factors (use of morphed or deepfake content, targeting of women, abuse of a position of trust). Because the field is evolving and many judgments are at the trial-court and High Court level, treat the outcome of any individual case as fact-specific rather than a fixed tariff. Do not rely on any single reported figure; ask your lawyer for the current position in your state.

Sample FIR / Written Complaint (Sextortion):

To,
The Station House Officer,
Cyber Police Station,
[Your city / district]

Subject: Complaint regarding cyber extortion / sextortion under BNS Section 308
and IT Act Sections 66D / 66E / 67A

Respected Sir/Madam,

I, [Full Name], aged [age] years, residing at [full address],
mobile [number], email [email], occupation [occupation], hereby
lodge the following complaint:

1. On [date], at approximately [time], I was contacted on [platform]
   by a profile named "[name]" (Profile URL: [link]).

2. Over [period], we exchanged messages, after which the person
   requested a video call.

3. During / after the call, the person recorded or fabricated a clip
   and, from [phone number], threatened to circulate it to my family
   and contacts unless I paid [amount] within [time].

4. [If money was paid] In panic, I transferred money as follows:
   - [date / time]: [amount] via [method] to [UPI ID / account]
     (UTR: [reference number]).

5. The attached screenshots show (a) the extortion messages,
   (b) the perpetrator's profile, and (c) the payment record.

I request registration of an FIR under BNS Section 308 and the
applicable IT Act provisions, immediate freezing of the beneficiary
account(s), investigation, arrest of the accused, and recovery of the
amount paid.

Place:                                            Signature
Date:                                             [Full Name]

Attach printouts of all screenshots and a USB drive with the original files. Keep one stamped copy of the complaint for your records.

Legal notice to a platform (outline): A short notice to the platform's Grievance Officer should identify you, describe the threat, provide the offending profile/URL, cite IT Act Sections 79, 67A and 66E, and demand (1) suspension of the perpetrator's account, (2) preservation and disclosure to police of IP/device logs, and (3) blocking of any matching content. Keep proof of delivery.

Should I pay the blackmailer to make it stop? No. Paying rarely ends the threat and usually invites repeat demands. Stop communicating, preserve evidence, and report to 1930 and https://cybercrime.gov.in.

Can I report anonymously? The NCRP portal allows you to file without making your identity public; police will contact you on the number you provide. For sexual offences, the law also restricts public disclosure of a victim's identity.

Will I get my money back? There is a real chance of stopping the money if you report within hours, before it is withdrawn through mule accounts. The 1930 helpline and CFCFRMS exist for exactly this. Recovery becomes harder the longer you wait.

Which law applies—IPC or BNS? Offences from 1 July 2024 onwards are charged under the BNS (extortion is Section 308); older offences continue under the IPC. IT Act provisions apply throughout.

Do I need a lawyer? You can file the NCRP complaint and FIR yourself. A lawyer helps if there are threats to your workplace or family, if you need anticipatory protection, or if you pursue civil recovery or defamation remedies.

Is sextortion only a crime against women? No. Men are frequently targeted too. Extortion under BNS Section 308 is gender-neutral; voyeurism under BNS Section 77 specifically protects women, and IT Act privacy provisions apply to everyone.

For the full text of the right-to-information law, see the RTI Act 2005 complete guide. To check a public authority's reply to your RTI, use the PIO reply checker.