Right to Information Wiki
SIM Swap Fraud Recovery 2026 — Stolen SIM, Wiped Bank Account? Get It Back in 24 Hours

SIM swap fraud 2026 — bank account wiped after a SIM swap? Block SIM, freeze bank, FIR, TRAI/Telco RTI escalation. Step-by-step recovery in 24 hours.

no way to compare when less than two revisions

Differences

This shows you the differences between two versions of the page.


sim-swap-fraud-recovery [2026/05/05 17:07] (current) – created - external edit 127.0.0.1
Line 1: Line 1:
 +{{htmlmetatags>metatag-keywords=(SIM swap fraud India, stolen SIM bank account, SIM swap recovery, TAFCOP, Sanchar Saathi, SIM fraud RBI, mobile number bank fraud, SIM swap 2026, telco RTI, NPCI block)
 +metatag-description=(SIM swap fraud 2026 — bank account wiped after a SIM swap? Block SIM, freeze bank, FIR, TRAI/Telco RTI escalation. Step-by-step recovery in 24 hours.)}}
 +
 +====== SIM Swap Fraud Recovery 2026 — Stolen SIM, Wiped Bank Account? Get It Back in 24 Hours ======
 +
 +{{ :social:auto:sim-swap-fraud-2026.png?direct&1200 |SIM swap fraud recovery — RTI Wiki guide 2026}}
 +
 +{{page>snippets:dpdp-banner}}
 +
 +**Your phone suddenly shows "No service" or "SIM not provisioned". Within hours, you receive bank SMS for transactions you didn't make — UPI debits, credit-card charges, even loans taken in your name. This is **SIM swap fraud** (also //SIM port-out fraud//, //SIM jacking//) — the criminal switches your number to a SIM in their possession, intercepts OTPs, drains your accounts. India recorded **over 90,000 SIM-swap complaints** at NCRP in 2024. The first **24-hour window** decides whether you recover 100% or 0%. Here is the working playbook — by the clock.**
 +
 +===== Quick Answer =====
 +
 +  * **First 60 minutes**: call your telco from another phone — block the swapped SIM. Vodafone Idea / Airtel / Jio / BSNL all have 24x7 lines. Lock UPI + freeze bank online channels.
 +  * **Within 24 hours**: dial **1930** (Cyber Crime Helpline) for any unauthorised debit. File at **https://cybercrime.gov.in**.
 +  * **Within 48 hours**: register **FIR** at cyber police station — IT Act §66C/§66D + BNS §318/§321/§336.
 +  * **Bank claim**: invoke **RBI Customer Liability Framework, 2017** §6.3 — zero liability if reported in 3 working days.
 +  * **TAFCOP** — open https://www.tafcop.dgtelecom.gov.in and check **all SIMs in your name**. Deactivate any you don't recognise.
 +  * **Sanchar Saathi → CEIR** — block your stolen / swapped phone IMEI at https://www.ceir.gov.in.
 +  * **Recovery rate**: 80%+ within 24 hours. <10% after 7 days.
 +  * **Cost**: ₹0 — TAFCOP, Sanchar Saathi, NCRP, FIR, RBI Ombudsman are all free.
 +
 +<WRAP center round tip 95%>
 +**🔔 Track new TRAI / DoT SIM-swap rules + telco audit alerts by email.** **[[https://righttoinformation.wiki/contact|Subscribe →]]**
 +</WRAP>
 +
 +===== Quick Action Steps (First 60 Minutes) =====
 +
 +  - **Use someone else's phone** — call your telco helpline (Airtel 121, Jio 199, Vi 199, BSNL 1503) → request **immediate SIM block + RE-issue** for your number. Note ticket number.
 +  - **Call your bank's helpline** (number on your debit/credit card or passbook). Tell: //"SIM swap fraud — block all online banking, UPI, cards. Report under RBI Customer Liability Framework, 2017."//
 +  - **Lock Aadhaar biometrics** at https://uidai.gov.in or m-Aadhaar app — prevents AePS misuse.
 +  - **Lock UPI** in BHIM/PhonePe/GPay → //Profile → Block UPI ID// or freeze. Also disable e-mandate auto-pay.
 +  - **Email all financial accounts** (banks, mutual funds, Demat, NPS, credit cards) requesting freeze pending re-verification.
 +  - **Take screenshots** of all unauthorised SMS, transaction alerts, missed calls.
 +  - **Dial 1930** → Cyber Crime Helpline (24x7). Get complaint number.
 +  - **TAFCOP** at https://www.tafcop.dgtelecom.gov.in → enter your number → see all SIMs in your name → deactivate unknown ones (free, instant).
 +  - **Sanchar Saathi → CEIR** — if your physical phone was stolen, block the IMEI.
 +  - **NCRP file** at cybercrime.gov.in → //Financial fraud → SIM swap fraud//.
 +
 +===== What is SIM Swap Fraud? =====
 +
 +**SIM swap** = a criminal convinces your **telecom operator** to issue a **new SIM** for **your** mobile number, then they receive all your calls, OTPs and SMS. It's social engineering at the **point of sale** (PoS) of a telco store, not a hack.
 +
 +How it happens:
 +
 +  * **Customer-care impersonation**: criminal phones telco saying //"I lost my SIM, need a new one"// — bypasses verification with leaked KYC + Aadhaar last 4 digits.
 +  * **Insider fraud**: corrupt telco employee or franchisee at a PoS retailer issues a SIM to the criminal in exchange for ₹5,000-₹50,000.
 +  * **e-KYC (Aadhaar-based) abuse**: criminal uses leaked biometric (sub-registrar leak / e-KYC scanner trap) to authorise SIM issuance.
 +  * **Port-out fraud (MNP)**: criminal initiates port to a different telco using leaked OTP — Mobile Number Portability hijack.
 +
 +Once active:
 +
 +  * Criminal receives **OTPs from banks, UPI, Demat, IT department, Aadhaar updates**.
 +  * Drains accounts via **UPI / IMPS / NEFT / RTGS**.
 +  * Takes **personal loans / credit-card cash advances** in your name.
 +  * Updates **email passwords** by reset OTP → drains crypto wallets, Paytm, MFs.
 +
 +You discover when:
 +  * Phone shows //"No service"// suddenly (your SIM is the deactivated one).
 +  * Bank SMS for unauthorised debits arrive on your email but not phone.
 +  * Friends say //"You missed my call"// when you didn't.
 +
 +===== Real-World Patterns 2024-2026 =====
 +
 +  * **Mumbai entrepreneur** lost **₹1.86 crore in 90 minutes** via SIM swap by a corrupt telco store owner — Apr 2024.
 +  * **Delhi senior citizen** lost **₹38 lakh** — Jul 2024.
 +  * **Pune professional** lost **₹2.4 crore** including ₹50 lakh in unauthorised personal loans — Sep 2024.
 +  * **NCRP 2024**: 90,000+ SIM-swap complaints, **₹500+ crore** total drain.
 +  * **Top fraud cluster**: Jamtara (Jharkhand), Mewat (Haryana), Bharatpur (Rajasthan) — most call-centres trace here.
 +  * **Telco audits 2024**: Airtel, Jio, Vi were collectively fined **₹3.6 crore** by TRAI for KYC lapses around SIM issuance.
 +
 +===== Legal Framework =====
 +
 +==== A. TRAI / DoT directives ====
 +
 +  * **DoT directive** (Aug 2023): telcos **must wait 7 days** before activating a re-issued SIM if the request is over the counter without biometric verification.
 +  * **DoT directive** (Mar 2024): SIM **MNP port-out** requires a 7-day cooling period with SMS verification.
 +  * **TRAI's TAFCOP portal** (https://www.tafcop.dgtelecom.gov.in) — every citizen can see all SIMs issued in their name. Free.
 +  * **CEIR (Central Equipment Identity Register)** at https://www.ceir.gov.in — block stolen phones by IMEI.
 +
 +==== B. RBI Customer Liability Framework, 2017 ====
 +
 +  * **Zero liability** if reported within **3 working days**.
 +  * **Limited liability up to ₹25,000** if reported within **4-7 working days**.
 +  * **Bank must credit shadow refund within 10 working days**.
 +  * **Final resolution: 90 days**.
 +
 +==== C. Sections under which SIM-swap fraudsters are charged ====
 +
 +  * **IT Act §66C** — identity theft (3 years).
 +  * **IT Act §66D** — cheating by impersonation (3 years).
 +  * **BNS §318** — cheating (7 years).
 +  * **BNS §319** — cheating by personation (5 years).
 +  * **BNS §321** — cheating by personation in possession (3 years).
 +  * **BNS §336** — forgery for cheating (7 years).
 +  * **PMLA §3** — money laundering.
 +  * **Indian Telegraph Act, 1885 §25** — impersonation in telco transactions.
 +
 +==== D. Mobile Number Portability (MNP) Regulations ====
 +
 +  * MNP under **TRAI Telecommunication Mobile Number Portability Regulations, 2009** (amended 2019).
 +  * Port-out OTP **valid 4 hours** (reduced from 24 hours after 2019 fraud spike).
 +  * Telcos liable for negligent port-out under TRAI's quality of service rules.
 +
 +==== E. DPDP Act, 2023 ====
 +
 +  * Telcos are **data fiduciaries** under DPDP §2(j).
 +  * Penalty up to **₹250 crore** for negligent handling of personal data leading to harm.
 +  * **Right to grievance** under DPDP §13 — DPO must respond.
 +
 +===== Step-by-Step Recovery Process =====
 +
 +==== Step 1 — Block the SIM + lock financial accounts (within 60 minutes) ====
 +
 +Order matters. Do these IN PARALLEL using two devices if possible:
 +
 +  - **Device 1**: call telco → block + re-issue (note ticket number).
 +  - **Device 2**: call bank's helpline → freeze ALL online channels + UPI + cards.
 +  - **Browser**: lock Aadhaar biometrics at uidai.gov.in.
 +  - **Browser**: change passwords on email, banking, mutual funds, Demat — use a password manager.
 +
 +==== Step 2 — TAFCOP audit (immediate) ====
 +
 +  - Go to https://www.tafcop.dgtelecom.gov.in.
 +  - Enter your number → OTP → see all SIMs in your name (max 9 per Aadhaar).
 +  - **Mark unknown SIMs as //Not my number → deactivate//**. Telco must act within 7 days.
 +
 +==== Step 3 — Sanchar Saathi → CEIR (immediate) ====
 +
 +  - Open https://www.ceir.gov.in.
 +  - If physical phone was stolen: //Block stolen phone// → enter IMEI + FIR copy → IMEI blocked across India within 24 hours.
 +
 +==== Step 4 — NCRP + FIR (within 24-48 hours) ====
 +
 +  - **NCRP file** at https://cybercrime.gov.in → //Financial fraud → SIM swap fraud//. Save Acknowledgement Number.
 +  - **FIR** at cyber police station — sections: IT Act §66C/§66D, BNS §318/§319/§321/§336.
 +  - eFIR available in 10+ states.
 +
 +==== Step 5 — Bank claim invoking RBI rule (within 3 working days) ====
 +
 +  - Visit branch with: ID, bank statement, NCRP acknowledgement, FIR copy.
 +  - Submit written letter:
 +    > //To, Branch Manager, [Bank], [Branch].//
 +    > //Sub: SIM swap fraud — RBI Customer Liability Framework Claim §6.3.//
 +    > //Account no: ... I noticed unauthorised debits totalling ₹... on dates... My SIM was swapped without my consent at [time]. I have filed FIR No. ..., NCRP Acknowledgement No. .... As per RBI/2017-18/15 dated 06 Jul 2017 §6.3, I am reporting within 3 working days; my zero-liability claim attaches. Kindly: (a) issue a shadow credit within 10 working days, (b) raise NPCI/IMPS dispute with the beneficiary bank, (c) provide telco-bank API logs for my account. — [Signature, Date].//
 +
 +==== Step 6 — NPCI / chargeback dispute (Day 1-7) ====
 +
 +  - For UPI: NPCI dispute via your bank.
 +  - For card: chargeback (TAT 60-90 days).
 +  - For NEFT/IMPS: bank-to-bank reversal via RBI Centralised Payments.
 +
 +==== Step 7 — RBI Banking Ombudsman (Day 30+ if bank stalls) ====
 +
 +  - File at https://cms.rbi.org.in.
 +  - Free. Order in 60-90 days.
 +  - Compensation up to ₹1 lakh for mental harassment, in addition to refund.
 +
 +==== Step 8 — RTI escalation ====
 +
 +File RTIs to track + push:
 +
 +  * **To telco** (private — but all listed telcos are //public authorities// for RTI on certain functions like consumer grievance + KYC compliance under TRAI directives. File via TRAI):
 +    //Did your KYC procedure verify the identity of the person re-issuing SIM for my number on date [X]; copy of the KYC form, biometric / OTP log, store ID, employee ID who processed it; reason for issuing without 7-day waiting period.//
 +  * **To TRAI**: //Status of audit / penalty action against [Telco] for the SIM swap incident reported under complaint [X]; date of next compliance review.//
 +  * **To DoT (via Sanchar Saathi)**: //Outcome of TAFCOP request to deactivate SIMs [list]; date the SIMs were deactivated; reason if not yet deactivated.//
 +  * **To bank**: //Status of complaint number [W]; date NPCI dispute raised; reply received from beneficiary bank.//
 +  * **To local police**: //FIR [No] status; investigating officer; date of next investigation step; status of beneficiary account holder identification.//
 +
 +Use the [[https://righttoinformation.wiki/tools/ai-rti-draft-app.html|RTI Drafter]] for these — drafts all 5 RTIs from your case description.
 +
 +===== Documents Required =====
 +
 +| Document                            | Purpose                                                |
 +| Aadhaar / PAN / Voter ID            | Identity proof.                                          |
 +| Bank statement — 90 days            | Showing the unauthorised debits.                          |
 +| Telco SIM block ticket number       | Proof you blocked at time T.                              |
 +| **TAFCOP screenshot**               | All SIMs in your name + which were deactivated.           |
 +| **CEIR IMEI block confirmation**    | If phone was physically stolen.                           |
 +| Screenshots of unauthorised SMS / app| Showing transactions you didn't authorise.               |
 +| **NCRP acknowledgement**            | Generated when filed at cybercrime.gov.in.                |
 +| **FIR copy**                        | After cyber police station registration.                  |
 +| **Bank receipt of complaint**       | Acknowledgement of your zero-liability claim.             |
 +| **m-Aadhaar lock screenshot**       | Evidence biometric was locked at time T.                  |
 +
 +===== Common Mistakes to Avoid =====
 +
 +  - **Waiting "to see if SIM auto-restores"** — delay costs the zero-liability ceiling.
 +  - **Calling telco from your own (stolen) SIM** — it's deactivated. Use a friend's phone.
 +  - **Visiting a random telco store to "fix it"** — go to your nearest //company-owned store//, not a franchisee. Franchisees often colluded in the original swap.
 +  - **Skipping TAFCOP** — multiple SIMs in your name = multiple attack surfaces.
 +  - **Skipping CEIR** — IMEI block prevents the criminal from re-using your stolen handset.
 +  - **Sharing OTP with a "bank verification officer"** — banks never ask for OTP.
 +  - **Trusting Telegram "recovery agents"** — second-stage scammers.
 +  - **Not filing FIR** — without FIR, banks can refuse zero-liability + telco refuses logs.
 +  - **Re-using the same swapped number for new accounts** — open a new bank-linked SIM.
 +
 +===== FAQs =====
 +
 +==== Why does SIM swap happen if telcos have KYC? ====
 +
 +Because **KYC at re-issuance** is weaker than KYC at fresh issuance. Many fraud cases trace to **insider abuse** at telco franchisees: a corrupt employee bypasses identity verification for a bribe.
 +
 +==== Can I prevent SIM swap proactively? ====
 +
 +Yes:
 +  * **Audit TAFCOP** monthly — see all SIMs in your name. Deactivate any you don't recognise.
 +  * **Use an authenticator app** (Google Authenticator / Authy) for banks that support it, instead of SMS-OTP.
 +  * **Different phone numbers for different services** — separate bank/UPI from social media.
 +  * **Lock Aadhaar biometrics** by default.
 +  * **Set up SMS-only alerts** — many banks email + SMS; if SMS stops while email continues, that's your alarm.
 +
 +==== Does the bank get my refund automatically? ====
 +
 +No — you must claim it. Banks don't volunteer the zero-liability refund. **You must invoke §6.3 RBI Customer Liability Framework explicitly in writing**, within 3 working days. Use the sample letter above.
 +
 +==== What about loans taken in my name during the swap? ====
 +
 +  * **Dispute** with the lender invoking RBI Customer Liability Framework + KYC failure.
 +  * **CIBIL dispute** at https://www.cibil.com → Online Dispute → cite the SIM-swap FIR.
 +  * **Lender's banking ombudsman** if it's a regulated lender.
 +  * **Civil suit** if lender refuses (rare).
 +
 +==== Telco refuses to share KYC details for the new SIM. What now? ====
 +
 +File **RTI to TRAI** asking for the audit outcome. Telcos are //public authorities for RTI// on regulatory compliance matters per **CIC decisions**. Also: **TDSAT** (Telecom Disputes Settlement Tribunal) for refusal to share.
 +
 +==== Can I sue the telco? ====
 +
 +Yes — under **Consumer Protection Act §2(47)** for deficiency in service. Also **DPDP Act §13** as data fiduciary breach. Compensation: ₹50,000 - ₹5 lakh + actual loss.
 +
 +==== Does insurance cover SIM-swap loss? ====
 +
 +Some banks offer **cyber-crime insurance** as a card-add-on (HDFC Diners Premium, ICICI Sapphiro, SBI Aurum). Check terms — typically covers up to ₹1-5 lakh.
 +
 +==== What if I'm a senior citizen / not tech-savvy? ====
 +
 +Free help:
 +  * **NALSA** 15100 — free legal aid + filing.
 +  * **Senior Citizens Helpline** 14567.
 +  * **District Legal Services Authority (DLSA)** — physical centres.
 +  * Your **Banking Correspondent (BC)** can help file at NCRP.
 +
 +==== I have multiple SIMs (work + personal). Is that risky? ====
 +
 +Not inherently — but **TAFCOP audit** monthly. Max 9 SIMs per Aadhaar. Each SIM is a potential entry point.
 +
 +==== After SIM is restored, am I safe? ====
 +
 +Mostly. But **change all passwords** + **revoke session cookies** on banking apps + **enable app-level biometric login**. Ask your bank for **a new debit card with a new number**.
 +
 +==== What if the criminal also knows my Aadhaar / PAN? ====
 +
 +  * **Lock Aadhaar biometrics**.
 +  * **Block PAN** temporarily via incometax.gov.in if you suspect IT misuse.
 +  * **Monitor CIBIL monthly** for unauthorised credit applications.
 +  * **Set up account-monitoring alerts** at every bank.
 +
 +==== Will my number be blocked permanently? ====
 +
 +No — the telco re-issues YOUR number to YOU after verification (Aadhaar biometric + visit to a company-owned store). Process: 24-48 hours. Some telcos charge ₹0-₹250 for re-issue.
 +
 +==== Can I get my IMEI-blocked phone unblocked if I find it? ====
 +
 +Yes — at https://www.ceir.gov.in → //Unblock found mobile//. Requires the FIR copy + retrieved phone in your possession.
 +
 +===== Internal Linking Suggestions =====
 +
 +  * [[:cyber-crime-complaint-india|Cyber Crime Complaint in India — full process]]
 +  * [[:upi-fraud-recovery-india|UPI Fraud Recovery — Dial 1930 + RBI 3-day rule]]
 +  * [[:aeps-aadhaar-fraud-recovery|AePS / Aadhaar Biometric Fraud Recovery]]
 +  * [[:digital-arrest-scam-7-minute-rescue|Digital Arrest Scam — 7-minute rescue plan]]
 +  * [[:loan-app-harassment-india|Loan App Harassment Recovery]]
 +  * [[:tools/ai-rti-draft-app.html|RTI Drafter — file an RTI to telco / TRAI / police]]
 +  * [[:check-status/aadhaar-status|Aadhaar Status — biometric lock + mobile update]]
 +  * [[:credit-card-charges-india|Credit Card Charges — every fee, RBI rules]]
 +
 +===== External References =====
 +
 +  * **TAFCOP (DoT — view all SIMs in your name)** — https://www.tafcop.dgtelecom.gov.in
 +  * **Sanchar Saathi → CEIR (block stolen phone)** — https://www.ceir.gov.in
 +  * **National Cyber Crime Reporting Portal** — https://cybercrime.gov.in
 +  * **RBI Customer Liability Framework, 2017** — https://www.rbi.org.in/Scripts/NotificationUser.aspx?Id=11040
 +  * **RBI Banking Ombudsman (CMS)** — https://cms.rbi.org.in
 +  * **TRAI Mobile Number Portability** — https://www.trai.gov.in/notifications/regulation
 +  * **NALSA** (free legal aid) — 15100 / https://nalsa.gov.in
 +  * Telco helplines: Airtel 121, Jio 199, Vi 199, BSNL 1503.
 +
 +===== Conclusion =====
 +
 +SIM swap is the original Indian //identity vacuum cleaner// — one swap empties your phone, your bank, your loans, your credit. The defence: **TAFCOP audit + Aadhaar biometric lock + authenticator app + monthly bank statement review**. If hit: **24-hour recovery window, RBI 3-day rule, NPCI dispute, FIR + RTI** — in that order.
 +
 +The [[https://righttoinformation.wiki/tools/ai-rti-draft-app.html|RTI Drafter]] auto-generates the 5 RTIs needed (telco, TRAI, DoT, bank, police) — saves hours.
 +
 +===== Sources =====
 +
 +  * Department of Telecommunications — SIM re-issuance directive Aug 2023 + MNP directive Mar 2024.
 +  * TRAI Telecommunication Mobile Number Portability Regulations, 2009 (amended 2019).
 +  * RBI Customer Liability Framework, 2017 (RBI/2017-18/15).
 +  * Bharatiya Nyaya Sanhita, 2023 — §318, §319, §321, §336.
 +  * Information Technology Act, 2000 — §66C, §66D.
 +  * Indian Telegraph Act, 1885 — §25.
 +  * Digital Personal Data Protection Act, 2023.
 +  * NCRB Cyber Crime Report 2024.
 +
 +//Last reviewed: 5 May 2026 — RTI Wiki editorial team.//
 +
 +{{tag>sim-swap sim-fraud cyber-crime tafcop sanchar-saathi rbi-3-day-rule trai-mnp it-act bns 2026 ncrp}}