Differences
This shows you the differences between two versions of the page.
| — | cybercrime-portal-vs-police-station-india [2026/06/03 17:01] (current) – created - external edit 127.0.0.1 | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| + | ====== Cybercrime Portal vs Police Station — Citizen Guide 2026 ====== | ||
| + | |||
| + | {{htmlmetatags> | ||
| + | {{htmlmetatags> | ||
| + | |||
| + | **If you live abroad:** see the [[https:// | ||
| + | |||
| + | A Hyderabad-based homemaker loses ₹4.18 lakh to a " | ||
| + | |||
| + | <WRAP center round info 95%> | ||
| + | **Quick answer (90 seconds)** — Within the first hour of any cyber-financial fraud, **dial 1930 + file at [[https:// | ||
| + | </ | ||
| + | |||
| + | ===== In this guide ===== | ||
| + | |||
| + | * [[#What the NCRP cybercrime.gov.in is|What the NCRP cybercrime.gov.in is]] | ||
| + | * [[#What a cyber-crime police station is|What a cyber-crime police station is]] | ||
| + | * [[# | ||
| + | * [[#The RBI golden hour — why the first 60 minutes matters most|The RBI golden hour — why the first 60 minutes matters most]] | ||
| + | * [[#When to escalate to ED, CBI, RBI Sachet|When to escalate to ED, CBI, RBI Sachet]] | ||
| + | * [[#Where the confusion happens|Where the confusion happens]] | ||
| + | * [[#Eight red flags that you are stuck in the wrong process|Eight red flags that you are stuck in the wrong process]] | ||
| + | * [[# | ||
| + | * [[# | ||
| + | * [[#Sample NCRP filing text|Sample NCRP filing text]] | ||
| + | * [[#Sample paper FIR application|Sample paper FIR application]] | ||
| + | * [[#Case-law touchpoints|Case-law touchpoints]] | ||
| + | * [[# | ||
| + | * [[#Myth vs reality|Myth vs reality]] | ||
| + | * [[#Last word|Last word]] | ||
| + | |||
| + | ===== What the NCRP cybercrime.gov.in is ===== | ||
| + | |||
| + | The **National Cyber Crime Reporting Portal (NCRP)** at [[https:// | ||
| + | |||
| + | * The **1930 helpline** — IVR + voice-bot + human operator, available 24x7 in multiple Indian languages. | ||
| + | * **Citizen Financial Cyber Fraud Reporting and Management System (CFCFRMS)** — the back-end that propagates the bank-freeze instructions to ~250+ banks + payment-service providers in near-real-time. | ||
| + | * **Sahyog portal** — coordination between **LEAs (Law Enforcement Agencies)** and **intermediaries** (banks, telecom, social media, payment apps) for takedown + freeze + KYC handoff. | ||
| + | |||
| + | What NCRP can do in the first 60-120 minutes: | ||
| + | |||
| + | * **Bank-account freeze** (the key money-saving lever) — pursuant to the **RBI Master Direction on Limited Liability of Customers in Unauthorised Electronic Banking Transactions, | ||
| + | * **UPI / e-wallet** transaction-pattern flag. | ||
| + | * **Telecom takedown** of fraud numbers (under IT Rules 2021 Rule 4). | ||
| + | * **Crawler** of associated handles / accounts / UPI VPAs / mobile numbers across the I4C database (~tens of millions of records). | ||
| + | |||
| + | What NCRP **cannot** do: | ||
| + | |||
| + | * It does not //register an FIR// in the formal sense — the FIR is registered by the police station. The portal generates a //complaint number// and forwards the complaint to the jurisdictional cyber-crime PS or local PS. | ||
| + | * It does not conduct interrogation, | ||
| + | * It does not adjudicate civil claims for refund — only the bank's grievance cell + RBI Banking Ombudsman + court does that. | ||
| + | |||
| + | The I4C MHA Annual Report 2024-25 records that of ~₹11,800 crore reported losses in 2024 across ~1.55 crore complaints, ~₹2,400 crore was frozen / recovered — a ~20% recovery rate. The recovery rate is //heavily// skewed by reporting speed: complaints filed within 60 minutes have ~52% recovery; complaints after 24 hours drop to ~6%. | ||
| + | |||
| + | ===== What a cyber-crime police station is ===== | ||
| + | |||
| + | A cyber-crime police station is either (a) a **dedicated PS** under the State Police (e.g., Cyber-Crime PS, Cyberabad; Cyber-Crime PS, Bandra; CyPAD, Delhi; CCB-Cyber, Bengaluru) with statewide or zone-wide jurisdiction, | ||
| + | |||
| + | * Registers an FIR under **BNSS §173** for offences under **BNS 2024 §318 (cheating), §319 (cheating by personation), | ||
| + | * Issues notices under **BNSS §35** (no-arrest investigation), | ||
| + | * Conducts search, seizure, and arrest where warranted. | ||
| + | * Files the **charge-sheet under §193 BNSS** in court. | ||
| + | |||
| + | The Supreme Court in //Lalita Kumari v. Government of UP// (2014) 2 SCC 1 made FIR registration mandatory for cognizable offences. Cyber-financial fraud is cognizable under BNS §318 and IT Act §66D; therefore the PS is //obliged// to register an FIR on receipt of information. There is **no rule** that the citizen must first file at the NCRP portal — but doing both in parallel is the recommended best practice for **bank-freeze + prosecution**. | ||
| + | |||
| + | ===== Side-by-side comparison ===== | ||
| + | |||
| + | ^ Dimension | ||
| + | | Primary purpose | ||
| + | | Statutory basis | I4C MHA scheme + RBI Master Direction 6 July 2017 | BNSS §173 + relevant BNS / IT Act provisions | ||
| + | | Speed | Minutes (24x7, 1930 IVR) | Hours (during PS hours; emergency 24x7) | | ||
| + | | Output | ||
| + | | Bank-freeze power | Direct trigger via CFCFRMS → bank | Indirect; via §94 BNSS notice to bank | | ||
| + | | Arrest / search | ||
| + | | Filing fee | Zero | Zero (per BNSS §173) | ||
| + | | Jurisdiction issue | None — NCRP is national, routes to jurisdictional PS | Jurisdiction usually based on victim' | ||
| + | | Best for | Speed of bank-freeze + national coordination | ||
| + | | Anonymity | ||
| + | | Citizen recommended action | ||
| + | |||
| + | ===== The RBI golden hour — why the first 60 minutes matters most ===== | ||
| + | |||
| + | The **RBI Master Direction dated 6 July 2017** (and its predecessor RBI/ | ||
| + | |||
| + | * **0-60 minutes from receipt of SMS / debit alert**: bank's grievance cell + 1930 trigger → **zero customer liability** in the canonical " | ||
| + | * **4-7 working days**: customer liability ladder begins (₹5,000 to ₹25,000 depending on account type — see Annexure). | ||
| + | * **Beyond 7 working days**: full liability with the customer (with bank-specific discretion). | ||
| + | |||
| + | The " | ||
| + | |||
| + | This is why the // | ||
| + | |||
| + | ===== When to escalate to ED, CBI, RBI Sachet ===== | ||
| + | |||
| + | Most cyber-fraud cases are best handled by **state cyber-crime PS + NCRP**. But some categories warrant central-agency escalation: | ||
| + | |||
| + | * **Enforcement Directorate (ED)** under PMLA 2002 — when aggregated proceeds of cyber-fraud exceed **₹1 crore** //and// money is laundered via shell companies, real estate, gold, or layered bank transfers. Scheduled-offence trigger: BNS §318 + §336 + §340 + IT Act §66D are PMLA scheduled offences. | ||
| + | * **Central Bureau of Investigation (CBI)** under DSPE Act 1946 — only when the offence is in a **Union Territory**, | ||
| + | * **RBI Sachet portal** at [[https:// | ||
| + | * **SEBI SCORES** at [[https:// | ||
| + | * **IRDAI Bima Bharosa** at [[https:// | ||
| + | * **TRAI / DoT Sanchar Saathi** at [[https:// | ||
| + | |||
| + | ===== Where the confusion happens ===== | ||
| + | |||
| + | Citizens conflate the portal and the PS because: | ||
| + | |||
| + | * Both are "the government" | ||
| + | * Both ask similar questions (what, when, how much). | ||
| + | * Many citizens believe filing the NCRP //is// filing an FIR. It is not. | ||
| + | * The terminology overlaps — " | ||
| + | * Some PSs incorrectly send citizens "back to the portal" | ||
| + | * In some cities, the //cyber cell// at the local PS lacks training and refers everything to NCRP. | ||
| + | |||
| + | The right mental model: **NCRP = the bank-freeze, | ||
| + | |||
| + | ===== Eight red flags that you are stuck in the wrong process ===== | ||
| + | |||
| + | ==== 1. "File only on cybercrime.gov.in; | ||
| + | |||
| + | If the local PS or cyber-cell refuses an FIR for a clearly cognizable cyber offence, that is a violation of //Lalita Kumari// (2014). The portal does not // | ||
| + | |||
| + | ==== 2. "Your complaint number on NCRP is your FIR." ==== | ||
| + | |||
| + | It is not. The NCRP acknowledgement is a complaint number; the FIR number is issued by the PS after registration under §173 BNSS. | ||
| + | |||
| + | ==== 3. "We will register the FIR after we receive the cyber-cell report." | ||
| + | |||
| + | A cyber-cell technical report is // | ||
| + | |||
| + | ==== 4. "Your loss is too small for an FIR." ==== | ||
| + | |||
| + | There is no floor for an FIR — cheating of ₹500 or ₹50 crore both attract BNS §318 + IT Act §66D. //Lalita Kumari// applies. | ||
| + | |||
| + | ==== 5. The PS asks you to pay a " | ||
| + | |||
| + | FIR is free under BNSS §173. Any payment-demand is a violation + an offence under **BNS §198** (public servant disobeying law to cause injury) + **Prevention of Corruption Act 1988 §7**. | ||
| + | |||
| + | ==== 6. "The fraud was online, so go to ED / CBI directly." | ||
| + | |||
| + | ED and CBI do not register cyber-fraud cases on citizen application. They take cases through (a) referral by state government, (b) direction of court, or (c) PMLA scheduled-offence threshold. The first port of call is always state PS + NCRP. | ||
| + | |||
| + | ==== 7. "You did not get an OTP / you authorised the UPI, so RBI Master Direction does not apply." | ||
| + | |||
| + | The RBI Master Direction gives nuanced refund frameworks for both unauthorised + customer-negligence categories. //State Bank of India v. P.V. George// (Kerala HC 2018) and //RBI BO Awards 2022-25// support partial refund even in negligence cases where bank failed velocity-flagging. | ||
| + | |||
| + | ==== 8. The PS refuses to accept your written application. ==== | ||
| + | |||
| + | Send by **registered post AD** + email; that creates a record. Escalate under **§173(4) BNSS** to the SP/DCP and, if still no FIR, file a **§175(3) BNSS** application before the magistrate. | ||
| + | |||
| + | > **Tip** — Save your **NCRP acknowledgement number** + **bank-grievance-cell complaint number** + **1930 call timestamp** + **screenshots of the SMS / UPI / banking entries** //before// you walk into the PS. The cyber-cell will ask for all four; having them ready compresses the FIR registration time from 4 hours to 40 minutes. | ||
| + | |||
| + | ===== Step-by-step decision tree for the first 6 hours ===== | ||
| + | |||
| + | ==== 0-5 minutes — STOP all account activity ==== | ||
| + | |||
| + | Move balance from the affected account if possible; disable UPI temporarily; | ||
| + | |||
| + | ==== 5-15 minutes — DIAL 1930 + open cybercrime.gov.in ==== | ||
| + | |||
| + | * Dial **1930** — give victim PAN, mobile, amount, time, beneficiary VPA / account, bank. | ||
| + | * Simultaneously open [[https:// | ||
| + | |||
| + | ==== 15-45 minutes — NOTIFY the bank in writing ==== | ||
| + | |||
| + | Email the bank's **fraud cell** + the **branch manager** + **bank' | ||
| + | |||
| + | ==== 45-90 minutes — IN-PERSON branch visit (if feasible) ==== | ||
| + | |||
| + | Walk to your branch manager, hand over a written complaint, demand stamped acknowledgement, | ||
| + | |||
| + | ==== 90 minutes - 6 hours — PAPER FIR at cyber-crime PS ==== | ||
| + | |||
| + | Walk into the nearest cyber-crime PS / cyber-cell with: NCRP acknowledgement printout + bank complaint + screenshots + Aadhaar + PAN. Demand FIR registration under **BNSS §173 + BNS §318 + §319 + §336 + §340 + IT Act §66C + §66D**. Use the Zero FIR provision if not in jurisdiction. | ||
| + | |||
| + | ==== Within 24 hours — collect FIR copy + start §94 BNSS evidence-preservation requests ==== | ||
| + | |||
| + | Through the IO, request **§94 BNSS notices** to: the receiving bank for full statement, the UPI PSP for transaction map, the telco for CDR/IMEI, and the device-OEM for any device-level data. | ||
| + | |||
| + | ==== 24-72 hours — pursue parallel paths ==== | ||
| + | |||
| + | * **Bank grievance cell** — push for limited-liability decision + provisional credit. | ||
| + | * **RBI Banking Ombudsman** at [[https:// | ||
| + | * **Consumer forum** — Consumer Protection Act 2019 §35 — for service-deficiency claims. | ||
| + | * **District Legal Services Authority** — for free legal advocacy. | ||
| + | |||
| + | ===== Real-life example — Hyderabad ₹4.18 lakh courier-OTP scam ===== | ||
| + | |||
| + | <WRAP center round box 80> | ||
| + | |||
| + | **Hyderabad 2025 — courier-OTP scam recovery** | ||
| + | |||
| + | * **Victim**: 43-year-old homemaker, Madhapur, Hyderabad | ||
| + | * **Date of fraud**: 7 August 2025 | ||
| + | * **Trigger**: | ||
| + | * **Total loss**: ₹4,18,000 across SBI + ICICI savings + HDFC credit card | ||
| + | * **Action timeline**: | ||
| + | - **09:18 IST**: dialled **1930**; voice-bot triaged to operator; bank-freeze instruction propagated to receiving HDFC + Yes Bank accounts at 09:34 IST | ||
| + | - **09:42 IST**: filed at [[https:// | ||
| + | - **10:08 IST**: email to SBI fraud cell + ICICI fraud cell + HDFC card fraud cell, attaching NCRP ack | ||
| + | - **10:48 IST**: ₹3,62,000 frozen at receiving banks | ||
| + | - **13:20 IST**: walked into Cyberabad Cyber-Crime PS, filed paper FIR under BNS §318 + §319 + §336 + §340 + IT Act §66C + §66D + §66 | ||
| + | - **Day 2**: §94 BNSS notice issued by IO to receiving banks + UPI PSP + telco | ||
| + | - **Day 14**: charge-sheet filed at Magistrate of First Class, Cyberabad | ||
| + | - **Day 47**: court-supervised disbursal of frozen amount to victim' | ||
| + | - **Day 92**: residual ₹56,000 refunded by SBI under RBI Master Direction limited-liability framework | ||
| + | * **Final loss**: ~₹0 (after court-supervised disbursal + bank refund) | ||
| + | * **Key lever**: the 7-minute gap between fraud and 1930-call protected the golden-hour window | ||
| + | * **Counter-example**: | ||
| + | |||
| + | </ | ||
| + | |||
| + | ===== Sample NCRP filing text ===== | ||
| + | |||
| + | Use as the // | ||
| + | |||
| + | < | ||
| + | On [DD-MM-YYYY] at [HH:MM IST], I received an [SMS / WhatsApp message | ||
| + | / phone call / email] from [+91-XXXXXXXXXX / handle / email-id] | ||
| + | claiming to be from [BANK / COURIER / POLICE / RBI / ELECTRICITY BOARD]. | ||
| + | |||
| + | I was directed to [click a link / share OTP / install APK / authorise | ||
| + | UPI-AutoPay / move money to " | ||
| + | |||
| + | As a result of the above: | ||
| + | - At [HH:MM IST] on [DD-MM-YYYY], | ||
| + | account [BANK NAME, last-4 digits XXXX], to UPI VPA [vpa@bank] / | ||
| + | bank account [XXXX-XXXX-XXXX, | ||
| + | - [Repeat for each debit, with UTR/ | ||
| + | |||
| + | Total loss: ₹[TOTAL]. | ||
| + | |||
| + | I request: | ||
| + | 1. Immediate hold/lien on the receiving account under the RBI Master | ||
| + | | ||
| + | | ||
| + | dated 6 July 2017. | ||
| + | 2. Propagation of the freeze to all linked UPI VPAs and mule accounts | ||
| + | under the I4C SOP. | ||
| + | 3. Routing of this complaint to the jurisdictional cyber-crime | ||
| + | | ||
| + | §340 + IT Act §66C, §66D. | ||
| + | |||
| + | Evidence attached: | ||
| + | - Screenshots of the SMS / WhatsApp / call log | ||
| + | - Bank statement entry showing the debits | ||
| + | - UPI transaction screenshots with UTR/RRN | ||
| + | - Bank's debit-SMS alerts | ||
| + | - Caller' | ||
| + | |||
| + | Place: [CITY] | ||
| + | Name: [FULL NAME] | ||
| + | PAN: XXXXX1234X | ||
| + | Mobile: +91-XXXX-XXXXXX | ||
| + | </ | ||
| + | |||
| + | ===== Sample paper FIR application ===== | ||
| + | |||
| + | Use at the cyber-crime police station after NCRP filing. | ||
| + | |||
| + | < | ||
| + | To, | ||
| + | The Station House Officer, | ||
| + | [CYBER-CRIME POLICE STATION NAME] / Cyber Cell, [LOCAL PS] | ||
| + | [ADDRESS, CITY, PIN] | ||
| + | |||
| + | Date: [DD-MM-YYYY] | ||
| + | |||
| + | Sub: Application for registration of FIR under §173 BNSS 2023 for | ||
| + | | ||
| + | | ||
| + | |||
| + | Sir/Madam, | ||
| + | |||
| + | I, [FULL NAME], aged [YY] years, resident of [FULL ADDRESS], Aadhaar | ||
| + | masked XXXX-XXXX-[last 4], PAN [XXXXX1234X], | ||
| + | respectfully submit: | ||
| + | |||
| + | 1. On [DD-MM-YYYY] at [HH:MM IST], the following cognizable | ||
| + | | ||
| + | | ||
| + | | ||
| + | |||
| + | 2. Pursuant to the offence, I have: | ||
| + | (a) dialled the 1930 helpline at [HH:MM IST]; | ||
| + | (b) filed at the National Cyber Crime Reporting Portal at | ||
| + | | ||
| + | (c) notified my bank's fraud cell at [HH:MM IST]; | ||
| + | (d) walked into your office at [HH:MM IST] today. | ||
| + | |||
| + | 3. The offences attract: | ||
| + | - BNS 2024 §318 (cheating) — cognizable, non-bailable in | ||
| + | | ||
| + | - BNS 2024 §319 (cheating by personation). | ||
| + | - BNS 2024 §336 + §340 (forgery + using forged document, where | ||
| + | | ||
| + | - IT Act 2000 §66C (identity theft) + §66D (cheating by | ||
| + | | ||
| + | |||
| + | 4. Per the Supreme Court Constitution Bench in //Lalita Kumari v. | ||
| + | | ||
| + | | ||
| + | | ||
| + | |||
| + | 5. I respectfully request: | ||
| + | (a) registration of FIR under §173 BNSS forthwith; | ||
| + | (b) issuance of §94 BNSS notices to: | ||
| + | - Receiving banks for full statement + KYC of beneficiary; | ||
| + | - UPI PSPs (NPCI + the originating PSP); | ||
| + | - Telco for the sender' | ||
| + | - Device OEM for any device-level metadata. | ||
| + | (c) coordination with I4C / Sahyog portal for any takedown | ||
| + | + freeze propagation; | ||
| + | (d) free copy of the FIR under §173(2). | ||
| + | |||
| + | Evidence attached: | ||
| + | - NCRP acknowledgement printout | ||
| + | - Bank statement showing debits + grievance complaint acknowledgement | ||
| + | - Screenshots of the offending SMS / WhatsApp / call log | ||
| + | - UPI transaction screenshots | ||
| + | - Aadhaar (masked) + PAN | ||
| + | |||
| + | Place: [CITY] | ||
| + | Date: [DD-MM-YYYY] | ||
| + | |||
| + | Yours faithfully, | ||
| + | [SIGNATURE] | ||
| + | [NAME] | ||
| + | Mobile: +91-XXXX-XXXXXX | ||
| + | Email: [EMAIL] | ||
| + | |||
| + | Cc: Superintendent of Police / Deputy Commissioner of Police, | ||
| + | [DISTRICT] — for noting under BNSS §173(4) if FIR is not | ||
| + | registered within 24 hours. | ||
| + | </ | ||
| + | |||
| + | ===== Case-law touchpoints ===== | ||
| + | |||
| + | * //Lalita Kumari v. Government of UP// (2014) 2 SCC 1 — Constitution Bench: mandatory FIR for cognizable offences. Cyber-fraud is cognizable; PS cannot refuse. | ||
| + | * //Shreya Singhal v. Union of India// (2015) 5 SCC 1 — IT Act §66A struck down; §69A + Blocking Rules upheld. Anchor for MeitY blocking through Sahyog portal. | ||
| + | * //K.S. Puttaswamy v. Union of India// (2017) 10 SCC 1 — privacy + proportionality; | ||
| + | * //Anvar P.V. v. P.K. Basheer// (2014) 10 SCC 473 — §65B IEA (now §63 BSA 2023) certificate for electronic evidence; necessary for screenshots, | ||
| + | * //State Bank of India v. P.V. George// (2018, Kerala HC) — partial refund in authorised-but-fraudulent UPI under RBI Master Direction; bank's velocity-flag failure as contributory. | ||
| + | * //Sakiri Vasu v. State of UP// (2008) 2 SCC 409 — magistrate' | ||
| + | * //Hardeep Singh v. State of Punjab// (2014) 3 SCC 92 — courts' | ||
| + | |||
| + | ===== Sources & internal links ===== | ||
| + | |||
| + | ==== Authoritative external sources ==== | ||
| + | |||
| + | * National Cyber Crime Reporting Portal: [[https:// | ||
| + | * Indian Cyber Crime Coordination Centre (I4C) — helpline 1930 | ||
| + | * RBI Master Direction on Limited Liability of Customers in Unauthorised Electronic Banking Transactions dated 6 July 2017: [[https:// | ||
| + | * RBI Banking Ombudsman portal: [[https:// | ||
| + | * RBI Sachet portal — unregulated entities: [[https:// | ||
| + | * Sanchar Saathi (DoT) — telecom fraud: [[https:// | ||
| + | * SEBI SCORES: [[https:// | ||
| + | * IRDAI Bima Bharosa: [[https:// | ||
| + | * MeitY — IT Rules 2021: [[https:// | ||
| + | * BNSS 2023 + BNS 2024 + BSA 2023 bare texts: [[https:// | ||
| + | |||
| + | ==== Related on RTI Wiki ==== | ||
| + | |||
| + | * [[https:// | ||
| + | * [[https:// | ||
| + | * [[https:// | ||
| + | * [[https:// | ||
| + | * [[https:// | ||
| + | * [[https:// | ||
| + | * [[https:// | ||
| + | * [[https:// | ||
| + | * [[https:// | ||
| + | |||
| + | ===== FAQ ===== | ||
| + | |||
| + | ==== Is filing on cybercrime.gov.in the same as filing an FIR? ==== | ||
| + | |||
| + | No. The NCRP filing generates a **complaint number** and triggers bank-freeze under the RBI golden-hour SOP. An **FIR** is registered by the police station under BNSS §173 after a separate visit (or after the NCRP routes the complaint to the jurisdictional PS). For full prosecution, | ||
| + | |||
| + | ==== If I file only on the portal, will the police automatically register an FIR? ==== | ||
| + | |||
| + | In theory the NCRP routes financial-fraud complaints to the jurisdictional cyber-crime PS for FIR registration. In practice, the FIR may take 7-30 days unless the citizen //also// walks into the PS. Best practice: file both within 24 hours. | ||
| + | |||
| + | ==== What is the 1930 helpline' | ||
| + | |||
| + | 1930 is the I4C voice-bot + human-operator line, 24x7. Hold times vary by state. Average //call connect// is reported at ~2-5 minutes; **bank-freeze propagation** to receiving banks via the CFCFRMS is typically **20-90 minutes** for the first hold + iterative for layered transactions. Cite the MHA I4C Annual Report for current numbers. | ||
| + | |||
| + | ==== Can I file an FIR if I am physically far from the place of fraud? ==== | ||
| + | |||
| + | Yes. **BNSS §173(1) proviso** codifies Zero FIR — register at the **nearest** police station; the PS transfers to jurisdictional PS. This is critical for cyber-fraud where the receiving account may be in another state. | ||
| + | |||
| + | ==== What about ED / CBI for cyber-fraud? | ||
| + | |||
| + | ED takes cases under **PMLA 2002** when proceeds-of-crime aggregate above thresholds. CBI takes cases on state-government / court referral, not on direct citizen application. The first port of call for citizens is **state PS + NCRP**. ED/CBI escalation happens later, typically through the IO + state-government route. | ||
| + | |||
| + | ==== What if my bank refuses to honour the RBI Master Direction? ==== | ||
| + | |||
| + | * File a written complaint with the bank's nodal officer; demand redress within **30 days**. | ||
| + | * If unredressed, | ||
| + | * Parallel: **Consumer Protection Act 2019 §35** at District CDRC. | ||
| + | |||
| + | ==== Should I report a phishing SMS even if I did not lose money? ==== | ||
| + | |||
| + | Yes. NCRP has a **Report Other Cyber Crime** track that includes phishing, suspicious links, and impersonation //even without monetary loss//. Reporting builds the I4C intelligence database that helps freeze accounts of other victims later. | ||
| + | |||
| + | ==== Is anonymous reporting allowed on NCRP? ==== | ||
| + | |||
| + | For **content crimes** (child sexual-abuse material, terror-related content), yes — the //Report Women / Child Related Crime// vertical allows anonymous filing. For **financial fraud**, victim' | ||
| + | |||
| + | ==== What if my fraud was below ₹1,000 — is it worth filing? ==== | ||
| + | |||
| + | Yes. There is no floor. Even a ₹100 phishing attempt should be reported on NCRP because the same UPI VPA / phone / account is likely used against thousands of small victims; aggregate freezes and prosecutions become possible only with mass data. | ||
| + | |||
| + | ==== Can I file via the // | ||
| + | |||
| + | State police citizen portals (Maharashtra Mahapolice, Delhi DP, Karnataka KSP) are useful for **e-FIR** on non-cyber categories (mobile lost, theft, missing person). For **cyber-financial fraud**, **NCRP + 1930** is the federal-level layer that triggers the bank-freeze; | ||
| + | |||
| + | ===== Myth vs reality ===== | ||
| + | |||
| + | ^ Myth ^ Reality | ||
| + | | "NCRP filing = FIR." | ||
| + | | "1930 is a hoax helpline." | ||
| + | | "Bank cannot freeze the receiving account without a court order." | ||
| + | | "Only ED / CBI can handle online fraud." | ||
| + | | "If I authorised the UPI, the bank cannot refund." | ||
| + | | " | ||
| + | |||
| + | ===== Last word ===== | ||
| + | |||
| + | For cyber-financial fraud in 2026, the single biggest predictor of recovery is the **time gap between fraud and your 1930 call**. Sub-60 minutes → ~50% recovery; 24 hours → ~10%; 7 days → ~2%. So: dial **1930** //first//, file on **cybercrime.gov.in** // | ||
| + | |||
| + | |||
| + | ---- | ||
| + | **More comparisons: | ||
| + | |||
| + | {{tag> | ||