An Increase in Cyber Crimes in India, 2025
Introduction
According to the Ministry of Home Affairs’ (MHA) Indian Cyber Crime Coordination Centre (I4C), there has been a notable increase in financial cybercrimes that target Indian individuals and are mostly coming from Southeast Asian nations.
What is the State of Financial Cyber Crimes in India as per I4C Analysis?
- Rising Financial Losses
- India lost Rs 7,000 crore in the first half of 2025, or an average of Rs 1,000 crore a month, as a result of cyber crimes.
- The I4C estimates that in 2025, the estimated yearly loss could surpass Rs 1.2 lakh crore (Rs 1.2 trillion), or 0.7% of India’s GDP.
- Origin & Nature of Scams
- Operating from high-security facilities purportedly managed by Chinese handlers, more than half of cyberfrauds directed at Indians came from Southeast Asian nations like Cambodia, Myanmar, Vietnam, Laos, and Thailand.
- These mainly include digital arrest scams, task-based and investment-based scams, and stock trading/investment scams.
- There are 45 scam centers in Cambodia, five in Laos, and one in Myanmar, according to Indian intelligence.
- Modus Operandi
- Cyber frauds are being run by trafficking victims, particularly Indians, through nations like Thailand, China, and Dubai using fictitious job offers.
- The Indian states of Maharashtra, Tamil Nadu, J&K, Uttar Pradesh, and Delhi are all home to recruitment agencies.
- Systemic Gaps & Enforcement Action
- Cybercrimes that are anonymous and cross-border are made possible by vulnerabilities in digital financial transactions, the issuance of fictitious SIM cards by PoS agents in the telecom industry, and inadequate immigration verification procedures.
What is the Indian Cyber Crime Coordination Centre (I4C)?
The Ministry of Home Affairs (MHA) started the Indian Cyber Crime Coordination Centre (I4C) as a nationwide effort to combat cybercrime in a coordinated and all-encompassing way. It was authorized in 2018 and opened in New Delhi in January 2020.
What is the Purpose & Role of Indian Cyber Crime Coordination Centre (I4C)?
- Serves as India’s lead agency for fighting cybercrime.
- Enables law enforcement organizations (LEAs) to investigate, stop, and prosecute cybercrimes by providing a framework and environment.
- Facilitates collaboration between nations, such as the 2025 Memorandum of Understanding with the United States for cooperative cybercrime investigations.
What are the Key Components of Indian Cyber Crime Coordination Centre (I4C)?
| Component | Function |
|---|---|
| National Cybercrime Threat Analytics Unit (TAU) | Monitors and analyzes cyber threats. |
| National Cybercrime Reporting Portal (NCRP) | Allows citizens to report cybercrimes online 24/7. |
| National Cybercrime Training Centre (NCTC) | Trains police, prosecutors, and judicial officers. |
| Cybercrime Ecosystem Management Unit | Promotes cyber hygiene and public awareness. |
| National Cybercrime Research & Innovation Centre | Develops indigenous tools and technologies. |
| National Cybercrime Forensic Laboratory (NCFL) | Supports forensic investigations. |
| Platform for Joint Cyber Crime Coordination Team | Enables collaboration among states and agencies. |
What are Cyber Frauds?
- Cyber frauds are illegal actions carried out to defraud people or organizations for financial benefit by leveraging digital technology, such as the internet.
- To steal money, data, or identities, it takes advantage of flaws in digital platforms, cybersecurity systems, or human behavior.
What are the Types of Cyberfrauds?
| Cyber Fraud/ Threats | Description |
|---|---|
| Digital Arrests | To extract money, people will pose as law enforcement or income tax officials. |
| Online Job/Task-Based Scams | Promises of phony remote work that require upfront cash. |
| Malware | By stealing personal data, malware enables cybercriminals to take over a victim’s computer. |
| Ransomware | After encrypting a victim’s files, ransomware demands payment to unlock them. Consider the 2016 WannaCry attack. |
| Phishing | Phishing occurs when customers click links in emails that seem to be from reliable sources, giving hackers access to private information like credit card data. |
| Cyberbullying | Cyberbullying encompasses any danger to an individual’s safety as well as pressure to say or do something. |
| Cyber Spying | Cyber spying aims to get private information, intellectual property, or confidential data by targeting the network of a public or private organization. |
| Business Email Compromise (BEC) | It is a white-collar crime for scammers to use legitimate email accounts to pose as suppliers, workers, or tax office representatives. |
| Dating Hoodwinks | Hackers pretend to be possible mates on dating websites, chat rooms, and online dating applications in order to obtain personal information. |
| ATM/PoS Frauds | Skimming credit card information or making illegal purchases. |
What are the Main Cybersecurity Initiatives?
- Global Initiatives on Cybersecurity
- Budapest Convention on Cybercrime: It is the first multinational agreement to combat cybercrime by establishing capacity, coordinating investigations, and harmonizing laws. It became operative on July 1st, 2004. India does not ratify the Budapest Convention.
- UNGA Resolutions on ICT Security: Russia launched the Open-ended Working Group (OEWG), which focuses on ICT security capacity building and inclusive discourse. The United States established the Group of Governmental Experts (GGE) to build worldwide legal frameworks and standards for responsible state behavior in cyberspace.
- Indian Initiatives
- Legislative Measures
- Information Technology Act, 2000 (IT Act)
- Digital Personal Data Protection Act, 2023
- Institutional Framework
- Indian Computer Emergency Response Team (CERT-In)
- National Critical Information Infrastructure Protection Centre (NCIIPC)
- Indian Cyber Crime Coordination Centre (I4C)
- Cyber Swachhta Kendra
- A system for tracking, monitoring, and resolving cyber fraud incidents in real time is the Citizen Financial Cyber Fraud Reporting and Management System.
- PoS agents who issued phony SIMs were the subject of formal complaints filed by the Central Bureau of Investigation (CBI).
- Strategic Initiatives
- Bharat National Cybersecurity Exercise 2024
- The 2013 National Cyber Security Policy lays out goals and tactics for safeguarding vital information infrastructure and securing cyberspace.
- Chakshu is a feature on the Sanchar Saathi portal for reporting phony calls, SMS, or WhatsApp communications pertaining to bank account changes or KYC expiration.
- Real-time cooperation to combat cyber fraud is made possible by a digital intelligence platform.
- Legislative Measures
What Actions Are Necessary to Fortify India’s Cybersecurity Frameworks?
- Infrastructure & AI-Based Security
- To proactively detect, anticipate, and eliminate cyberthreats, fortify digital infrastructure with firewalls, frequent software and hardware upgrades, and AI-driven threat detection systems.
- Forensic investigation, incident response, and ransomware prediction must all be supported by AI tools.
- Cyber Awareness & Literacy
- Start national cyber literacy initiatives in local languages aimed at senior folks, young people, and rural populations.
- Build digital resilience early on by integrating cybersecurity instruction into schools and colleges, bolstered by staff training and protected infrastructure.
- Institutional & Audit Reforms
- Perform required cybersecurity audits, including stress tests and staff readiness, in vital industries like banking, healthcare, and utilities.
- Create cybersecurity units at the district level to manage threats locally and work with CERT-In.
- Corporate & Banking Safeguards
- Implement data encryption, two-factor authentication (2FA), and monitoring systems in banks and companies.
- Financial institutions need to keep an eye on questionable transactions, identify logins from foreign IP addresses, and stop stolen money from being converted into cryptocurrencies.
Conclusion
The increase in financial cybercrimes in India emphasizes how urgently improved public awareness and more robust cybersecurity measures are needed. Initiatives are essential in the fight against cyberthreats, but because cybercrimes are always changing, institutional, technological, and legal frameworks must also change. India can reduce the dangers of cyber fraud and provide a safer digital environment for its people by resolving systemic flaws and promoting digital literacy.
Frequently Asked Questions (FAQs)
What is the current state of Cyber Crime in India in 2025?
Cybercrime in India is at a critical inflection point, marked by an unprecedented volume and sophistication of threats. India is projected to lose ₹20,000 crore to cybercrime in 2025, with brand abuse and fake domains alone accounting for ₹9,000 crore.
Which sectors and regions are most affected by Cyber Crime in India?
1. Most Affected Sectors: Banking, Financial Services, and Insurance (BFSI), Healthcare, and Hospitality are prime targets due to the sensitive financial and personal information they handle.
2. Top Targeted Regions (Malware Activity): Telangana, Tamil Nadu, and Delhi experience disproportionately high volumes of malware activity, possibly due to higher digital adoption.What is the Indian government doing to combat Cyber Crime in 2025?
1. Indian Cyber Crime Coordination Centre (I4C): A central body to deal with all types of cybercrimes in a coordinated manner.
2. National Cyber Crime Reporting Portal (NCRP) (cybercrime.gov.in): Allows the public to report cybercrime incidents, with a focus on crimes against women and children.
3. Citizen Financial Cyber Fraud Reporting and Management System: For immediate reporting of financial frauds (helpline 1930) to prevent siphoning off funds.
4. Cyber Fraud Mitigation Centre (CFMC): Collaboration between banks, financial intermediaries, payment aggregators, telecom providers, and law enforcement for immediate action.
5. Awareness Campaigns: Extensive campaigns through SMS, social media (@CyberDost), radio, and caller tunes to educate citizens about various scams like digital arrest.How can individuals protect themselves from Cyber Crime in India in 2025?
1. Use Strong and Unique Passwords: At least 12-16 characters with a mix of letters, numbers, and special characters. Consider using a password manager.
2. Enable Two-Factor Authentication (2FA): Adds an extra layer of security to accounts.
3. Keep Software and Devices Updated: Regularly update operating systems, apps, and security software to patch vulnerabilities.
4. Be Aware of Phishing Scams: Verify senders, never click suspicious links, and avoid sharing personal/financial details via unsolicited emails or texts.
5. Use a Secure Internet Connection: Avoid accessing sensitive accounts on public Wi-Fi. Use a VPN (Virtual Private Network) for encryption.
Sources:
- https://www.dsci.in/resource/content/india-cyber-threat-report-2025
- https://www.quickheal.co.in/documents/threat-report/india-cyber-threat-report-2025.pdf?srsltid=AfmBOopw6ubsrZNb6Hv6YacPUX6UAOLlC0Pvu64nLpF0Nxo8KUG1ZeUK
- https://www.thehindu.com/news/cities/bangalore/ai-becoming-formidable-tool-for-cybercriminals-report/article69736569.ece
- https://xn--i1b5bzbybhfo5c8b4bxh.xn--11b7cb3a6a.xn--h2brj9c/MHA1/Par2017/pdfs/par2025-pdfs/LS29072025/1531.pdf
- https://economictimes.indiatimes.com/industry/banking/finance/indian-entities-may-lose-rs-20000-cr-to-cyber-crimes-in-2025-cloudsek-report/articleshow/118651127.cms?from=mdr
- https://reports.weforum.org/docs/WEF_Global_Cybersecurity_Outlook_2025.pdf
- https://www.newindianexpress.com/nation/2025/May/02/over-10-lakh-cyber-attacks-on-indian-systems-after-pahalgam-terror-attack-maharashtra-cyber
- https://www.indiatoday.in/india/story/cybercrime-may-cost-india-rs-20000-core-in-2025-banking-e-com-most-vulnerable-2688350-2025-03-03
Leave a Reply