In a chilling case from Chandigarh, an elderly woman lost over Rs 2.5 crore to fraudsters who posed as officials from the Telecom Regulatory Authority of India (TRAI) and the Central Bureau of Investigation (CBI). They accused her of links to criminal activity and claimed an FIR had been filed against her. The situation escalated when others – posing as CBI officers and even the Chief Justice of India – joined the call, and threatened that her number would be deactivated. Intimidated and confused, the woman ended up sharing her bank details, leading to massive losses. Chandigarh Police are investigating the case.
TRAI is a body that regulates telecommunication services and conserves the interest of the aid providers and customers.
How do scammers execute TRAI impersonation scams?
Priyanka Kulkarni, manager, telecom, media and technology, growth advisory at Aranca, said, “As telecom fraud evolves in India, TRAI impersonation scams have reached an “industrial scale”. According to her, scammers combine advanced technology with psychological manipulation to deceive even the most vigilant consumers. “These scams typically begin with Voice over Internet Protocol (VoIP) calls from international or spoofed numbers (often starting with +65, +67, +670, +8, +85, or +977) leveraging India’s low international call termination charges to flood users with convincing threats,” she said.
Modus operandi
Kulkarni shed light on how these scammers operate. They use Interactive Voice Response (IVR) systems to deliver pre-recorded messages in Hindi or English, claiming to be TRAI officials and warning that the recipient’s SIM card will be blocked or their number is linked to illegal activities like money laundering. “Some calls even point to problems with (Know Your Customer) KYC verification or billing, demanding immediate resolution through sharing personal data,” she said.
What makes these scams particularly convincing is their multi-layered approach, Kulkarni said.
“Scammers ‘escalate’ the situation and victims are transferred to ‘officials’ speaking in regional dialects to build trust, and are then shown fake government documents as proof. They’re sometimes held in long video calls to prevent outside interference and pressured into making urgent payments or sharing data,” Kulkarni said.
Shubham Singh, a cyber security expert, explained how the scam operates at multiple levels:
Story continues below this ad
🎯Caller ID Spoofing: Fraudsters use technology to make it appear as if the call is coming from a government or TRAI-like number.
🎯Fake Warnings: Victims are told their SIM will be blocked due to illegal activity or non-verification.
🎯Fake Offers: Scammers offer benefits (like free upgrades or refunds) and ask for OTPs or personal data.
🎯Phishing Links: SMS containing malicious links that appear to be from official portals or apps. Fraudsters clone official websites, and victims are tricked into believing the sites are legitimate, leading them to share their credentials.
Story continues below this ad
🎯Social Engineering: They manipulate victims emotionally, fear of losing mobile service to rush decisions.
Priyanka said scammers target sensitive personal and financial data of the victims like Aadhaar numbers, PAN card numbers, bank account details, credit or debit card details, One-Time Passwords (OTPs), and other KYC (Know Your Customer) credentials.
How is the stolen data misused?
Financial theft: Scammers use stolen bank or card details to withdraw money directly or make unauthorised purchases in the victim’s name.
Identity theft: With access to Aadhaar, PAN, and bank information, fraudsters create fake identities to open accounts, apply for loans, or commit other crimes.
Story continues below this ad
SIM swapping: Using KYC data, scammers get a duplicate SIM issued to intercept OTPs and bypass two-factor authentication, gaining access to banking, email, and social media accounts.
Continued extortion: Victims are blackmailed with fake legal threats like “digital arrest” and are coerced into sending more money under pressure.
How to spot fake TRAI messages
Not every message that says it is from TRAI or your telecom provider is real and knowing the difference can save you from serious trouble.
Start with the sender: Genuine messages always come from official, easily recognisable sender IDs, not from random mobile numbers or foreign codes.
Story continues below this ad
Watch the language: Scammers often try to create urgency and panic using phrases like “your number will be disconnected today!” and fill messages with bad grammar or odd formatting. Real messages are clear, calm, and professional.
Remember what real officials don’t do: Neither TRAI nor your service provider will ever ask you for your Aadhaar, OTPs, or bank details over a call or text. If they do, it’s a scam.
Trust your instincts: If something feels off, too aggressive, too urgent, or just unusual, it probably is. Take a moment, verify before you act.
How to stay safe from such scams
Singh listed steps users should have in mind to stay safe from scams:
Story continues below this ad
🎯Never share OTPs or banking details: No official will ever ask for your OTPs, PINs, or bank account info over a call.
🎯TRAI doesn’t make personal calls: TRAI or telecom companies do not call users to verify numbers, ask for Aadhaar, or threaten disconnection.
🎯Don’t click on strange links: If you get a suspicious link via SMS or WhatsApp, don’t open it, it could lead to phishing or malware.
🎯Double-check from official sources: For any telecom-related notice or clarification, visit http://www.trai.gov.in.
Story continues below this ad
🎯Use the TRAI DND app: Enable Do Not Disturb (DND) through the official app to reduce spam calls and messages.
🎯Install a caller ID app: Apps like Truecaller can help identify known scam numbers or shady callers before you answer.
🎯If you fall prey to such scams, report them via the Sanchar Saathi Portal. It is an official platform by the Department of Telecommunications (DoT) to help users detect and report telecom fraud.
What to do in case you are scammed
Visit: https://www.sancharsaathi.gov.in
🎯‘Report a Cyber Fraud’ to flag suspicious activity.
Story continues below this ad
🎯‘Report Suspected Mobile Connection’ if someone else is using your identity.
🎯Check your mobile records: See how many SIM cards are issued in your name.
🎯Instantly request disconnection of any unauthorised numbers/
“Regulatory vigilance alone isn’t enough,” said Neehar Pathare, CEO of 63SATS Cybertech. He stressed the need for collaboration between regulators, service providers, cybersecurity experts, and users. “We must authenticate sender IDs, adopt AI-driven fraud detection, and scale digital awareness,” he said.
The Safe Side:
As the world evolves, the digital landscape does too, bringing new opportunities—and new risks. Scammers are becoming more sophisticated, exploiting vulnerabilities to their advantage. In our special feature series, we delve into the latest cybercrime trends and provide practical tips to help you stay informed, secure, and vigilant online.