💳Critical Risk

Credit & Debit Card Fraud

Skimming, cloning and unauthorised transactions on your cards

What is this scam?

Credit and debit card fraud affects millions of Indians annually. Fraudsters steal card details through skimming devices at ATMs, point-of-sale machines, and phishing websites. With stolen data they clone cards or make online purchases. India's shift to digital payments has made card fraud a fast-growing crime, with losses running into thousands of crores annually.

How it works — step by step

1
ATM skimming: a device is placed on the card slot to copy magnetic strip data; a tiny camera or fake keypad overlay captures your PIN.
2
Point-of-sale skimming: a compromised POS machine at a shop or restaurant copies your card when you swipe.
3
Online card fraud: card details (number, expiry, CVV) stolen from a compromised website or via phishing.
4
Fraudulent customer care: scammer pretending to be bank calls and collects card number, expiry, and CVV claiming to 'verify' your card.
5
Card-not-present fraud: stolen details used for international or online transactions where physical card isn't needed.

Common variants (4)

Variant	How it works	How to identify
ATM Skimming	Fake card reader + camera placed on ATM records card data	Check ATM card slot for looseness before inserting card
Card Cloning	Physical card duplicated using stolen magnetic stripe data	Unexplained charges at locations you've never visited
CNP Fraud	Card details used for online purchases without physical card	OTP sent for transactions you didn't initiate
Fake Bank Call	Caller collects card number, expiry, CVV, and OTP	Banks NEVER call to ask for your CVV or OTP

🚩 Red flags — warning signs

⚠️ATM card slot feels loose, wiggled, or has any attachment on it — do not insert card
⚠️POS machine at a shop is taken away from your sight during payment
⚠️Anyone asking for your card's CVV number over the phone — your bank never asks for CVV
⚠️SMS alert for a transaction you did not make — act within minutes
⚠️Multiple small test transactions from unfamiliar merchants

✅ What to do if you've been targeted

1CALL your bank IMMEDIATELY (number on back of card) to block the card
2Dispute the transaction through your bank's app — do it within the same day for best results
3Report to bank within 3 working days for zero liability refund under RBI guidelines
4File complaint on cybercrime.gov.in
5Report to RBI Ombudsman at cms.rbi.org.in if bank does not resolve within 30 days
6Always shield your PIN when entering at ATM or POS — use your hand to cover the keypad

📋 Official resources & complaint portals

→cybercrime.gov.in
→1930
→cms.rbi.org.in — RBI Ombudsman

⚖️ Legal protection

RBI zero-liability protection: report within 3 working days for full refund, 4–7 days for capped liability (₹5,000–₹25,000).

Report this type of scam ← Browse all categories

What is this scam?

How it works — step by step

ATM skimming: a device is placed on the card slot to copy magnetic strip data; a tiny camera or fake keypad overlay captures your PIN.

Point-of-sale skimming: a compromised POS machine at a shop or restaurant copies your card when you swipe.

Online card fraud: card details (number, expiry, CVV) stolen from a compromised website or via phishing.

Fraudulent customer care: scammer pretending to be bank calls and collects card number, expiry, and CVV claiming to 'verify' your card.

Card-not-present fraud: stolen details used for international or online transactions where physical card isn't needed.

Common variants (4)

Variant	How it works	How to identify
ATM Skimming	Fake card reader + camera placed on ATM records card data	Check ATM card slot for looseness before inserting card
Card Cloning	Physical card duplicated using stolen magnetic stripe data	Unexplained charges at locations you've never visited
CNP Fraud	Card details used for online purchases without physical card	OTP sent for transactions you didn't initiate
Fake Bank Call	Caller collects card number, expiry, CVV, and OTP	Banks NEVER call to ask for your CVV or OTP

🚩 Red flags — warning signs

⚠️ATM card slot feels loose, wiggled, or has any attachment on it — do not insert card

⚠️POS machine at a shop is taken away from your sight during payment

⚠️Anyone asking for your card's CVV number over the phone — your bank never asks for CVV

⚠️SMS alert for a transaction you did not make — act within minutes

⚠️Multiple small test transactions from unfamiliar merchants

✅ What to do if you've been targeted

1CALL your bank IMMEDIATELY (number on back of card) to block the card

2Dispute the transaction through your bank's app — do it within the same day for best results

3Report to bank within 3 working days for zero liability refund under RBI guidelines

4File complaint on cybercrime.gov.in

5Report to RBI Ombudsman at cms.rbi.org.in if bank does not resolve within 30 days

6Always shield your PIN when entering at ATM or POS — use your hand to cover the keypad