Your account will be blocked in 24 hours. Update your KYC immediately. This SMS links to a fake bank page that looks identical to your real bank's website. Enter your credentials and scammers access your account in real time. Here is exactly what to look for.
What Is This Scam?
Fraudsters send SMS messages and emails impersonating major Indian banks warning that your account or UPI will be suspended unless you update KYC. The link leads to a replica of the bank's website that captures your net banking login, password, and OTP in real time.
How It Works
- 1Victim receives an urgent SMS or email appearing to come from their bank.
- 2Message says KYC is expired and account will be blocked within 24 hours.
- 3Victim clicks the link and lands on a convincing fake bank website.
- 4Enters net banking credentials and OTP.
- 5Scammer uses the details in real time to transfer money out of the account.
⚠ Red Flags to Watch For
- Urgent language about account being blocked or last warning
- Link URL is not the bank's official domain
- SMS sender ID looks slightly different from the real one
- Bank asking for your full password or OTP via SMS or email
- Suspicious grammar or formatting in the message
What to Do If You Are Targeted
Do not click the link. Call your bank's official number on the back of your debit card to verify. If you have already entered credentials, call your bank immediately to freeze your account. Change your net banking password and report at cybercrime.gov.in.
✅ Stay Safe Checklist
- Always type your bank URL directly — never click links in SMS or email
- Your bank will NEVER ask for your OTP or password via SMS
- Check the sender ID carefully — one wrong character means fraud
- Enable transaction alerts on your bank account
- Bookmark your bank's official website and use only that