Online Scam: 40 Bank Users Lose Lakhs in 3 Days After Clicking Malicious Link
Mumbai Police, in an advisory, has warned citizens not to click on links that ask for confidential banking information.
Mumbai: 40 Bank Customers, Including TV Actor Shweta Menon, Lose Lakhs After Clicking Fake KYC Link
Mumbai — A growing wave of online fraud has hit Mumbai, with at least 40 customers of a private bank losing lakhs of rupees in just three days after clicking on a fake link sent via text messages. The messages falsely claimed that customers needed to update their KYC (Know Your Customer) and PAN details to keep their accounts active.
The Scam Unfolds
The seemingly harmless text messages appeared genuine — complete with the bank’s name and an urgent warning that the customer’s account would be blocked if KYC or PAN details weren’t updated. Many, fearing disruption to their accounts, clicked on the link without hesitation.
However, instead of being directed to the bank’s official website, the victims were taken to a fake portal, designed to look identical to the real one. Once there, they were prompted to enter their customer ID, password, and even OTP (one-time password) — unknowingly handing their information directly to fraudsters.
Police Advisory
In an official advisory, the Mumbai Police has warned citizens not to click on suspicious links or share confidential banking information.
“Fraudsters are sending fake SMS messages with phishing links, claiming your account will be blocked if you don’t update your KYC or PAN details. Do not click on such links or share personal details,” the advisory stated.
Police said such scams are part of a larger pattern of phishing operations, where criminals use psychological pressure and fear of losing access to bank accounts to trap victims.
A Familiar Face Among the Victims
Among the 40 victims was TV actor Shweta Menon, who also fell prey to the scam. In her complaint, Ms. Menon stated that she received a text message last Thursday that appeared legitimate. She clicked on the link and, believing it was from her bank, entered her customer ID, password, and OTP on the fake website — only to realize later that she had been cheated.
A Reminder for All
The incident serves as a sobering reminder of how easily anyone — even educated or well-known individuals — can become targets of cybercrime. Experts advise customers to always verify messages through official bank websites or customer service numbers and to avoid clicking on links sent via SMS or email.
As digital banking continues to grow, so does the sophistication of cybercriminals. Authorities urge everyone to stay cautious, double-check URLs, and remember one golden rule — your bank will never ask for passwords or OTPs through links or messages.
