The new frontier of cybercrime is defined by sophistication, moving beyond simple scams to weaponise advanced technology
As India celebrates the remarkable success of its Digital India initiative—with over 86 per cent of households now connected to the internet—a dark, rapidly evolving threat is testing the nation’s digital resilience: cyber fraud. The staggering surge in cybersecurity incidents, jumping from 10.29 lakh in 2022 to an alarming 22.68 lakh in 2024, reflects a widening attack surface that has made digital security a paramount national concern.The financial toll is mounting, too, with over RS 36.45 lakh in cyber frauds reported on the National Cyber Crime Reporting Portal (NCRP) as of February 2025. This explosion of online criminality, often linked to international organised crime and fraud factories in Southeast Asia, has prompted a multi-layered, technologically advanced response from the government, echoing the words of Prime Minister Narendra Modi: “I dream of a Digital India where cyber security becomes an integral part of our national security.”
Menace Of AI-Powered Deception
The new frontier of cybercrime is defined by sophistication, moving beyond simple scams to weaponise advanced technology. Techniques like spoofingwhere criminals impersonate trusted entities—are common, but the rise of deepfakes leveraging Artificial Intelligence (AI) represents a profound shift.Union Finance Minister Nirmala Sitharaman recently voiced personal alarm over this threat, stating that she has seen several of her own deepfake videos circulated online, manipulated to mislead citizens. She warned that the new generation of fraud is “no longer about breaching firewalls, it is about hacking trust,” with criminals using AI to mimic voices, clone identities, and create lifelike videos that can easily manipulate people.
These deepfakes, alongside traditional phishing attempts and attacks targeting the ubiquitous Unified Payments Interface (UPI), amplify the impact of scams. The problem has become so severe that the Department of Telecommunications (DoT) launched the Financial Fraud Risk Indicator (FRI) to classify suspicious mobile numbers as Medium, High, or Very High-risk, directly addressing the use of compromised numbers in UPI fraud. The financial ecosystem is also battling illicit ventures like online betting apps, which have generated over RS 400 crores in criminal proceeds. The newly passed Promotion and Regulation of Online Gaming Bill, 2025, which imposes a complete ban on online money gaming, marks a significant legislative strike against this particular stream of illegal income.
India’s Multi-Layered Cyber Defence
The Government of India has deployed a robust and comprehensive cybersecurity framework to safeguard its vast online community of citizens, who rely on the internet for essential services from banking to governance.
At the heart of the defence are key legislations:
Information Technology Act, 2000: This is the bedrock of India’s cyber law, enabling the prosecution of offences like identity theft, impersonation, and the dissemination of harmful material, as well as the blocking of malicious websites.
IT (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021: This ensures accountability of digital platforms and mandates the removal of unlawful content, including those created through the misuse of AI.
Digital Personal Data Protection Act, 2023: This act imposes strict obligations on data fiduciaries to handle personal data lawfully and with user consent, making the digital space more accountable and secure.
Institutional Response & Coordination
Several specialised agencies form the operational core of India’s cyber defence:
| Agency | Role and Function |
| CERT-In (Indian Computer Emergency Response Team) | The national agency for responding to cybersecurity incidents, issuing alerts, detecting vulnerabilities, and prescribing remedial measures. It has facilitated 109 mock drills as of March 2025. |
| I4C (Indian Cybercrime Coordination Centre) | Established under the Ministry of Home Affairs, it provides a coordinated framework for Law Enforcement Agencies (LEAs), supporting capacity-building and real-time information sharing. It has proactively blocked 3,962 Skype IDs and 83,668 WhatsApp accounts linked to frauds. |
| NCIIPC (National Critical Information Infrastructure Protection Centre) | The national nodal agency for protecting critical infrastructure (banking, power, telecom, etc.) through continuous monitoring and risk assessment. |
Actionable Progress & Citizen Empowerment
The fight against cyber fraud is already yielding measurable results, bolstered by significant financial commitment—the Union Budget 2025 allocated ₹782 crore for cybersecurity projects.
Financial Savings: The Citizen Financial Cyber Fraud Reporting and Management System (CFCFRMS) has been instrumental, enabling financial institutions to save over RS 5,489 crore from fraudulent transactions across more than 17.82 lakh complaints.
Disrupting Operations: Over 9.42 lakh SIM cards and 2,63,348 IMEIs linked to fraudulent activities have been blocked, demonstrating a focus on dismantling the infrastructure of organised cybercrime.
Law Enforcement Training: The CyTrain portal has registered over 1,05,796 police officers, with over 82,704 certificates issued, equipping frontline personnel with essential investigation skills. The analytics-based Samanvaya Platform has also led to the arrest of 12,987 accused.
Citizen Access: The National Cyber Crime Reporting Portal (www.cybercrime.gov.in) and the dedicated helpline 1930 provide immediate assistance to victims, facilitating prompt reporting and freezing of fraudulent transactions.
Call For Collective Cyber Awareness
The government’s robust efforts, from the advanced research of the National Mission on Interdisciplinary Cyber-Physical Systems (NM-ICPS) to the targeted protection of vulnerable groups via the Cyber Crime Prevention Against Women and Children (CCPWC) Scheme, are crucial. However, the conclusion remains clear: securing India’s cyberspace is a shared responsibility.Through citizen-centric outreach campaigns, the publication of a Handbook for Adolescents and Students, and the establishment of the National Cyber Coordination Centre (NCCC) to generate situational awareness, the government is committed to fostering a culture of cyber alertness. The responsibility now falls to every user to be a vigilant partner in this fight, upholding the principle of ‘STOP-THINK-TAKE ACTION’ to combat the deceptive sophistication of the digital age.
