Cyber Crime Complaint Process in India: Complete Guide to Portal, FIR, and Recovery (2026)

Where should cyber fraud be reported immediately?
Report on the National Cyber Crime Reporting Portal at https://cybercrime.gov.in and call the national helpline 1930 within the first hour. Simultaneously inform your bank’s fraud helpline to block transactions.

Is FIR mandatory for cyber fraud?
Not for all cases. FIR becomes mandatory for losses exceeding ₹10 lakh (as per new e-Zero FIR initiative), serious cognizable offences under IT Act/IPC, or when banks require it for fund recovery. Portal complaints suffice for smaller frauds initially.

What are the realistic recovery chances?
National recovery rates improved from 10-11% in 2024 to 24% in 2025, with prompt reporting within 6 hours significantly increasing recovery chances. Speed matters more than amount.

Key action steps:

1. Report on cybercrime.gov.in within 1 hour
2. Call 1930 for financial frauds
3. Inform your bank immediately
4. Preserve all evidence (screenshots, transaction IDs)
5. Follow up every 7-10 days

Understanding India’s Cyber Crime Crisis: 2025-2026 Statistics

Before diving into the complaint process, understanding the scale helps contextualize urgency.

Alarming Growth in Cyber Crimes

Cybersecurity incidents in India surged from 10.29 lakh in 2022 to 22.68 lakh in 2024, representing a 120% increase in just two years. The trajectory suggests India will cross 25 lakh cases in 2026.

Financial impact continues escalating:

• Indians lost over ₹22,845 crore to cyber frauds in 2024, a staggering 206% increase from 2023 levels
• Between April 2021 and September 2025, cybercriminals defrauded citizens of nearly ₹3,588 crore, with only ₹239 crore (6.7%) recovered
• Investment scams alone accounted for ₹17,400 crore in losses

Most Common Cyber Crimes in India (2025-2026)

Based on National Cyber Crime Reporting Portal data and law enforcement reports:

1. Digital Payment & UPI Frauds (35% of cases) – Fake QR codes, payment link scams, OTP theft
2. Digital Arrest Scams (28% of cases) – Fraudsters impersonating law enforcement
3. Investment & Trading Scams (18% of cases) – Fake platforms promising high returns
4. Phishing, Smishing & OTP Frauds (12% of cases) – Spoofed messages harvesting credentials
5. Social Media Account Hacking (7% of cases) – Identity theft and impersonation

Financial fraud accounted for 75% of cyber crime in India between 2020 and 2023, with peaks over 77%.

Why Recovery Rates Remain Low

Despite improvements, recovery challenges persist:

• Funds moved rapidly through multiple mule accounts
• Cross-border fraud networks operating from Cambodia, Laos, Vietnam
• Criminals predominantly based in Southeast Asia working for Chinese handlers use illegal SIM box installations to mask international calls as local Indian numbers
• Delays in victim reporting (average 24-48 hours vs optimal 1-6 hours)
• Complex digital money trails requiring international cooperation

What Is the National Cyber Crime Reporting Portal?

The National Cyber Crime Reporting Portal (NCRP) at https://cybercrime.gov.in is India’s centralized government platform for reporting all types of cyber offences, launched by the Ministry of Home Affairs under the Indian Cyber Crime Coordination Centre (I4C).

Purpose and Functionality

The portal facilitates victims to report cyber crime complaints online, accepting complaints for online Child Pornography, Child Sexual Abuse Material, social media crimes, online financial frauds, ransomware, hacking, cryptocurrency crimes, and online cyber trafficking.

What the portal does:

• Provides immediate acknowledgement with unique Complaint ID for tracking
• Automatically routes complaints to relevant state/UT cyber cells
• Coordinates with banks’ nodal cyber fraud teams in financial cases
• Enables real-time status tracking
• Offers anonymous reporting option for women and child-related crimes

What the portal does NOT do:

• Does not automatically register an FIR (separate process)
• Does not guarantee money recovery
• Does not provide legal advice or representation
• Cannot handle non-cyber crimes (use 112 for emergencies)

Portal Features and Statistics

Between January 2021 and November 2022, a total of 884,963 complaints were received under the online financial fraud category alone. The portal has processed over 36 lakh complaints cumulatively by 2025.

Helpline Integration:
The dedicated cybercrime complaint number 1930 operates on working days from 9:00 a.m. to 6:00 p.m., though many states now offer 24/7 coverage for financial frauds.

Step-by-Step: How to File Complaint on cybercrime.gov.in

Follow this exact sequence to ensure proper complaint registration.

Step 1: Access the Portal

Visit https://cybercrime.gov.in on any device. The portal supports:

• English and Hindi languages
• Desktop, mobile, and tablet access
• All major browsers

Step 2: Choose Complaint Category

On the homepage, you’ll find two options: ‘Report Women/Child-Related Crime’ and ‘Report Cyber Crime’. For women or child victims, use the first option with anonymous reporting available.

For financial frauds:

• Select “Report Other Cyber Crime”
• Choose “Financial Fraud” subcategory
• Click “File a Complaint”

For non-financial crimes:

• Select appropriate category (hacking, harassment, stalking, etc.)
• Choose specific subcategory

Step 3: Register and Verify

Register your mobile number, receive an OTP for verification, and fill in your name and state. First-time users don’t need prior account creation.

Step 4: Enter Incident Details (Critical Step)

Provide comprehensive, accurate information:

Date and time: Exact date/time when fraud occurred
Incident description: Minimum 200 characters – be clear, chronological, factual

• How were you contacted? (call, SMS, email, WhatsApp, website)
• What information did you share?
• What actions did you take?
• What happened to your money/account?

Transaction details (for financial frauds):

• Transaction ID/UTR number
• Amount debited
• Beneficiary account number/UPI ID
• Bank/wallet name
• Timeline of unauthorized transactions

Suspect information (if known):

• Phone numbers used
• Email addresses
• Website URLs
• Social media profiles
• Bank account details where money was transferred

Step 5: Upload Evidence (Quality Matters)

Evidence should include credit card receipts, bank statements, online money transfer receipts, email copies, URL of web pages, chat transcripts, videos and images.

Essential documents:

• Screenshots: Transaction confirmations showing UTR, amount, timestamp
• Chat history: WhatsApp, Telegram, SMS conversations (full thread, not selective)
• Email communications: Include full headers for phishing emails
• Bank statements: Highlighting fraudulent transactions
• Call recordings: If available and legal in your jurisdiction
• Website screenshots: Including URL bar showing domain

Technical specifications:

• File size limit: 5MB per attachment
• Supported formats: JPG, PNG, PDF, DOC
• Ensure screenshots are clear, readable, complete

Step 6: Review, Submit, and Save

Upon submission, you receive a unique reference number for tracking. Save this number – further communication regarding investigations will use this identifier.

Post-submission:

• Screenshot your Complaint ID
• Save the acknowledgement PDF
• Note down the date and time of submission
• Email confirmation will be sent to registered email

Average time to complete: 10-20 minutes
Cost: Completely free

Official Guide

For detailed step-by-step instructions, refer to the citizen’s manual at https://cybercrime.gov.in/UploadMedia/MHA-CitizenManualReportOtherCyberCrime-v10.pdf

When Is an FIR Required? (Legal Clarity)

Understanding FIR requirements prevents confusion and delays.

New e-Zero FIR Initiative (2025)

The Ministry of Home Affairs’ Indian Cybercrime Coordination Centre (I4C) introduced the e-Zero FIR initiative in May 2025. Complaints related to financial losses above ₹10 lakh made to NCRP and 1930 automatically lead to registration of a Zero FIR with the e-Crime Police Station of Delhi.

Key features:

• Automatic FIR conversion for cases above ₹10 lakh
• Launched as pilot in Delhi, expanding nationwide
• Integration of NCRP, Delhi Police e-FIR system, and CCTNS
• Eliminates jurisdictional delays

When FIR Becomes Mandatory

Trigger	Explanation	Relevant Law
Amount-Based	Losses exceeding ₹10 lakh trigger automatic e-FIR; individual states may have lower thresholds (₹1-5 lakh)	I4C Guidelines 2025
Cognizable Offences	Serious crimes like hacking, identity theft, data breach	IT Act Section 66, 66C, 66D
Bank Requirement	Financial institutions demand FIR for fraud investigation and insurance claims	RBI Master Directions
Legal Documentation	Court proceedings, insurance claims, employment verification	CrPC Section 154
Organized Crime	Cases involving cyber trafficking, blackmail, extortion	IPC Section 384, BNS Section 308(2)

According to recent legislation, any criminal complaint pertaining to a cyber offence involving an amount more than ₹10 lakh must be converted into a Zero First Information Report immediately.

Cognizable vs Non-Cognizable Offences

Cognizable offences (FIR mandatory):

• Hacking (IT Act Section 66)
• Identity theft (IT Act Section 66C)
• Cheating by impersonation (IT Act Section 66D, IPC Section 420)
• Publishing obscene material (IT Act Section 67)
• Cyber stalking (IT Act Section 354D)

Non-cognizable offences (portal complaint may suffice):

• Minor online harassment without threats
• Small-value frauds under state thresholds
• Defamation cases (may require civil action)

Jurisdiction Rules

According to the IT Act, cyber crime comes under global jurisdiction, meaning a cyber crime complaint can be registered with any cyber cell in India, irrespective of the place where the crime occurred.

Zero FIR concept:
Under Section 154 of CrPC, every police officer must record the complaint of an offense, irrespective of the jurisdiction in which the crime was committed. Police register Zero FIR and transfer to appropriate station.

How to File an FIR for Cyber Crime

When your case requires formal FIR, follow this procedure.

Choosing the Right Police Station

Option 1: Your local police station (where you were when fraud occurred)
Option 2: District/State Cyber Crime Cell (specialized handling)
Option 3: Any police station (Zero FIR, then transfer)

Find your state cyber cell:
Contact details available at https://cybercrime.gov.in/Webform/Crime_NodalGrivanceList.aspx

Documents Required

Required documents include ID proof, evidence such as screenshots, account details, WhatsApp communications, and the cybercrime.gov.in complaint acknowledgement.

Complete checklist:

• Government-issued ID (Aadhaar, PAN, Passport)
• Address proof
• Cybercrime.gov.in complaint copy with ID number
• Bank account statements
• Transaction receipts and UTR numbers
• All evidence uploaded to portal (printed copies)
• Written complaint application (typed or handwritten)
• Contact details of witnesses (if any)

Filing Process

Step 1: Visit chosen police station
Step 2: Request to file cyber crime FIR
Step 3: Provide verbal/written narration of incident
Step 4: Officer records statement
Step 5: Review FIR carefully before signing
Step 6: Receive FIR copy with number
Step 7: Note Investigating Officer’s name and contact

Your complaint should be clear, chronological, and fact-based, including all relevant details.

If Police Refuse to Register FIR

Unfortunately, refusals still occur. Your legal rights:

Immediate action:

1. Request written refusal with reasons
2. Remind them of Supreme Court directive in Lalita Kumari case
3. Cite Section 154 CrPC mandatory registration requirement
4. Request to speak with Station House Officer (SHO)

Escalation path:

1. First escalation: Deputy Superintendent of Police (DSP) or Assistant Commissioner of Police (ACP)
2. Second escalation: Superintendent of Police (SP) of the district
3. Third escalation: State Cyber Crime Cell head
4. Legal route: Magistrate under Section 156(3) CrPC/BNSS can direct police to investigate

Documentation: Record names, designations, date, time of refusal for escalation.

What Happens After Filing a Complaint?

Understanding the investigation flow manages expectations and enables effective follow-up.

Immediate Bank Coordination

For frauds within 24 hours, the 1930 operator fills a form with personal information and crime details. A ticket gets escalated to financial intermediaries – both the debited bank (victim’s account) and credited bank (fraudulent beneficiary account).

Bank actions:

• Temporary freeze on beneficiary account
• Flag account for suspicious activity
• Share account holder details with investigators
• Process refund if funds still available

RBI timeline:
Banks must act within hours for real-time fraud reporting. Customers reporting within 3 days qualify for zero liability under RBI guidelines if they can prove unauthorized transaction.

Investigation Workflow

Phase 1: Initial Assessment (1-7 days)

• Complaint validation and categorization
• Evidence review and preliminary analysis
• Assignment to Investigating Officer (IO)
• Bank coordination initiated

Phase 2: Technical Investigation (7-30 days)

• Digital forensics on devices and accounts
• IP address tracing and geo-location
• Call Detail Records (CDR) analysis
• Bank account and transaction trail mapping
• Platform notices (to social media, payment apps, telecom providers)

Phase 3: Suspect Identification (30-90 days)

• Mule account holder tracing
• Cybercafe/device location tracking
• Cross-referencing with other cases
• Coordinating with other state cyber cells

Phase 4: Action (Variable timeline)

• Suspect arrest and interrogation
• Fund recovery attempts
• Chargesheet filing
• Court proceedings

Communication Expectations

Be realistic:

• Immediate updates are rare
• Most investigation happens backend
• First contact may be 7-15 days for additional information
• Status changes every 2-4 weeks for active cases
• No news doesn’t mean no action

Regular updates provided via:

• Portal status tracking system
• SMS to registered mobile
• Email notifications
• Direct calls from IO (for serious cases)

Recovery Statistics and Timelines

Uttar Pradesh Police recovery rate improved from 11% in 2024 to 24% in 2025, with ₹325.25 crore frozen in 2025 alone through prompt reporting on NCRP and 1930.

Factors affecting recovery:

• Reporting speed: Within 1 hour (60% recovery chance) vs 24+ hours (15% chance)
• Money trail: Single transfer (higher recovery) vs multiple hops (lower)
• Account type: Wallet/UPI (easier tracking) vs cryptocurrency (minimal recovery)
• Jurisdiction: Domestic (possible) vs international (extremely difficult)

Follow-Up Process: The Most Ignored Yet Critical Step

Persistent, systematic follow-up dramatically improves case outcomes. Most victims file complaints then wait passively – this ensures inaction.

How to Track Complaint Status

Online tracking:

1. Visit https://cybercrime.gov.in/Webform/chkackstatus.aspx
2. Enter your Complaint ID
3. Check status updates
4. Note any action taken or pending requirements

Status indicators:

• Registered: Complaint received and acknowledged
• Under Investigation: Assigned to investigating agency
• Action Taken: Arrests made, funds frozen, or case closed
• Pending Information: Victim input required

Follow-Up Frequency and Method

Recommended schedule:

• First follow-up: 7-10 days after filing
• Regular follow-ups: Every 2-3 weeks
• Escalation trigger: No update after 30 days

Follow-up channels (in order of preference):

1. Investigating Officer direct contact: Call/visit for case-specific updates
2. Cyber Cell helpdesk: For general status queries
3. 1930 helpline: For financial fraud follow-ups
4. Portal tracking: For automated status
5. Written communication: Email/letter to SHO (creates record)

Whom to Contact at Each Stage

Timeline	Contact Person	Purpose
0-15 days	Investigating Officer (IO)	Case progress, additional evidence submission
15-30 days	Station House Officer (SHO)	Escalate if IO unresponsive
30-60 days	DSP/Cyber Cell Head	Escalate stalled investigation
60+ days	SP/DCP, RTI Application	Formal escalation, demand accountability

RTI (Right to Information) for stalled cases:

• File RTI with police department
• Ask specific questions: IO name, investigation status, actions taken
• 30-day response mandatory
• Exposes inaction, creates pressure

Bank Follow-Up (Parallel Track)

Don’t rely solely on police. Independently follow up with your bank:

Week 1-2:

• Fraud department confirmation of complaint receipt
• Temporary block confirmation on your compromised cards/accounts
• Internal investigation timeline

Week 3-4:

• Request written update on beneficiary account status
• Ask if funds frozen or recovered
• Escalate to grievance officer if no response

Beyond 30 days:

• Escalate to Banking Ombudsman if bank non-cooperative
• File complaint at https://cms.rbi.org.in
• Demand compensation for delays per RBI guidelines

---

Common Mistakes That Weaken Your Case

Avoid these critical errors that reduce chances of recovery and prosecution.

Mistake 1: Delayed Reporting

Problem: Funds are quickly moved through multiple digital accounts. Delays in bank reporting enable criminals to withdraw before freezing.

Impact: Recovery chances drop from 60% (1-hour reporting) to under 15% (24+ hour reporting)

Solution: Report within first hour, even if you’re not 100% certain about all details

Mistake 2: Incomplete or Incorrect Information

Problem: Wrong transaction IDs, missing amounts, vague descriptions
Impact: Investigation stalls, evidence inadmissible, case dismissed
Solution: Double-check every number, date, name before submission

Mistake 3: Missing or Poor-Quality Evidence

Problem: Blurry screenshots, partial chat history, no transaction proof
Impact: Inability to establish crime, identify suspects, or prove loss
Solution: Collect comprehensive evidence immediately after realizing fraud

Mistake 4: Filing Multiple Conflicting Complaints

Problem: Filing on portal, then FIR with different details, then another portal complaint
Impact: Creates confusion, wastes investigative resources, may be seen as false reporting
Solution: File once comprehensively; update same complaint rather than creating duplicates

Mistake 5: Neglecting to Inform Bank Separately

Problem: Assuming portal will automatically protect your accounts
Impact: Continued unauthorized transactions, liability questions
Solution: Call bank’s 24/7 fraud helpline immediately, independent of portal filing

Mistake 6: No Follow-Up After Filing

Problem: Filing complaint then waiting passively for months
Impact: Case goes cold, gets buried in backlog, investigator assumes victim lost interest
Solution: Systematic follow-up every 2-3 weeks with documented communication

Mistake 7: Deleting Evidence

Problem: Deleting “embarrassing” chats, clearing browser history, formatting device
Impact: Destroys digital forensic evidence, hampers tracing
Solution: Preserve everything exactly as is; let investigators extract what they need

Mistake 8: Falling for “Recovery Scams”

Problem: Fraudsters pose as cyber cell officers demanding fees for “guaranteed recovery”
Impact: Losing more money to secondary scam
Solution: All government services are free; no officer will demand payment for recovery

---

Comprehensive FAQ: Every Question Answered

General Questions

Q1: How long does cyber crime investigation take in India?
A: Timeline varies significantly. Simple cases with clear evidence may see initial action within 7-15 days. Complex cases involving multiple jurisdictions can take 6-18 months. Recovery rate improved to 24% in 2025, with successful cases typically resolving within 2-3 months from prompt reporting.

Q2: Can I file cyber crime complaint anonymously?
A: The National Cyber Crime Reporting Portal allows anonymous reporting for offenses against women and children. However, full details improve investigation effectiveness. For other crimes, identity is typically required for FIR and legal proceedings.

Q3: What is the 1930 helpline and when should I call?
A: 1930 is the dedicated national helpline offering immediate cybersecurity assistance for reporting financial frauds and cyber crimes. Call immediately for real-time frauds, especially UPI/net banking theft occurring now or within last 24 hours.

Q4: Is cybercrime.gov.in legitimate or another scam?
A: Confirmed legitimate. It’s the official Government of India portal run by Ministry of Home Affairs. Look for “.gov.in” domain (not .com, .org, .in). Never pay any fees – all services are free.

Q5: How can I verify if cyber police contacted me?
A: Real cyber police:

• Never demand immediate payment/transfer
• Provide official ID and station details
• Call from official numbers (verify via portal)
• Give you time to verify their identity

Scammers creating “digital arrest” scenarios are frauds themselves.

Portal and Filing Questions

Q6: Can I edit my complaint after submitting on cybercrime.gov.in?
A: You cannot edit submitted complaints. Instead, use your Complaint ID to contact the assigned cyber cell with additional information or corrections. Document all supplementary details.

Q7: What if I don’t have all transaction details while filing?
A: File with available information immediately – speed matters. Mention “details being collected” for missing information. Follow up within 2-3 days with complete details to the investigating officer.

Q8: Can I file complaint for fraud that happened months/years ago?
A: Yes, there’s no strict time limit for reporting cyber crime. However, evidence degrades over time (logs deleted, accounts closed, memories fade). File immediately regardless of how much time passed.

Q9: Should I file on portal first or go directly to police station?
A: File on portal first (takes 10-20 minutes), get Complaint ID, then visit police station for FIR if amount exceeds threshold or offense is serious. Portal filing creates digital record and starts bank coordination.

FIR Questions

Q10: What’s the difference between portal complaint and FIR?
A: A Cyber Cell complaint is the initial step to inform authorities. An FIR is formal criminal case registration, mandatory for cognizable offences under CrPC/BNSS. Portal complaint can lead to FIR, but FIR triggers formal investigation and legal proceedings.

Q11: Do I need FIR for small amounts like ₹5,000?
A: Not mandatory initially. File portal complaint first. If no action within 30 days, you can escalate to FIR. However, for amounts below ₹50,000, focus on portal complaint and bank dispute resolution.

Q12: Can I file FIR in any police station across India?
A: Yes, through Zero FIR mechanism. Any police station must register your FIR regardless of jurisdiction, then transfer to appropriate station. Cases between ₹25 lakh and ₹50 lakh are handled by Crime Branch Cyber Cell, while cases exceeding ₹50 lakh go to IFSO Unit of Special Cell in Delhi pilot.

Q13: What if police refuse despite showing Section 154 CrPC?
A: Request written refusal. Escalate to SP with written complaint. If still refused, approach Judicial Magistrate under Section 156(3) with application directing police to investigate. Consider legal aid or filing RTI to expose refusal.

Recovery Questions

Q14: What are realistic chances of getting my money back?
A: Only 6.7% of cyber fraud money was recovered between April 2021 and September 2025 overall. However, recovery improved to 24% in 2025 for cases with prompt reporting. Factors: reporting speed (within 1 hour highest chance), domestic transfers (better than international), single-hop transactions (better than multiple).

Q15: How long does bank take to refund fraudulent transactions?
A: Per RBI guidelines, banks must complete investigation within 90 days. If liability proven on bank (poor security, delayed fraud alert), refund within 10 working days of investigation completion. Zero liability if you report within 3 days and prove you didn’t share credentials willingly.

Q16: Can cryptocurrency fraud money be recovered?
A: Extremely difficult. Cryptocurrency transactions are largely irreversible and pseudo-anonymous. While police recovered 17% of defrauded amounts in Indore in 2025, crypto cases have near-zero recovery unless fraudsters’ exchange accounts are frozen quickly.

Q17: What happens to recovered money?
A: Frozen funds are deposited in court or police custody. After case conclusion, court orders refund to victims. Process takes months to years. Partial recovery distributed proportionally among victims if multiple people defrauded.

Investigation Questions

Q18: Will police really investigate small fraud cases?
A: Priority given to high-value, organized crimes. Small-value cases (<₹50,000) may not get dedicated investigation but are logged for pattern analysis. Filing complaint still important – serial fraudsters eventually caught through cumulative complaints.

Q19: How do police trace cyber criminals?
A: Multi-pronged approach:

• Bank account details and KYC of beneficiary
• Mobile number CDR (call detail records) and tower locations
• IP address tracing to ISP and physical location
• Digital forensics on seized devices
• Platform data requests (WhatsApp, email providers)
• Cross-referencing with other cases
• Analyzing mule account networks

Q20: Can police access my deleted WhatsApp/email messages?
A: Deleted messages on your device are difficult to recover unless backed up. However, investigators can request data from WhatsApp/email servers via legal process. Success depends on provider’s data retention policies and encryption. Better to preserve evidence yourself.

Legal Questions

Q21: Should I hire a lawyer for filing cyber crime complaint?
A: Not required for initial portal filing or FIR – these are free processes. Consider lawyer for:

• Complex cases involving large amounts (₹10 lakh+)
• If criminal proceedings initiated against you
• Civil litigation for damages
• Dealing with uncooperative police Cyber law specialists charge ₹5,000-₹50,000 depending on case complexity.

Q22: What are my rights as cyber crime victim?
A: Rights under CrPC/BNSS and victim compensation schemes:

• Right to file complaint and receive acknowledgement
• Right to FIR for cognizable offences (mandatory registration)
• Right to case status updates
• Right to legal representation
• Right to victim compensation (state-dependent, serious crimes)
• Right to appeal if case closed or charge sheet not filed

Q23: Can I withdraw cyber crime complaint once filed?
A: You can request withdrawal via written application to investigating officer or magistrate. However:

• Cognizable offences (serious crimes): State may continue prosecution regardless
• Non-cognizable offences: Usually allowed with permission
• If FIR filed: Requires court permission for quashing Withdrawal doesn’t guarantee case closure, especially if public interest involved.

Special Situations

Q24: What if fraudster is my relative/known person?
A: Same process applies. Personal relationship doesn’t exempt from law. Many fraudsters exploit trust. Police handle sensitively but you must file complaint with honest disclosure of relationship. Civil settlement possible parallel to criminal proceedings.

Q25: How to report international cyber crime (fraudster abroad)?
A: File on cybercrime.gov.in with all available details. Indian cyber cells coordinate with:

• Interpol for cross-border crimes
• Foreign law enforcement via mutual legal assistance treaties
• Origin country’s cyber crime units Recovery extremely difficult but complaints help pattern recognition.

Q26: Can I file complaint for cyber crime against Indian victim from abroad (NRI)?
A: Yes. cybercrime.gov.in accessible globally. Provide Indian contact number or use relative’s number. For in-person FIR, authorize someone via power of attorney or file when visiting India. Some Indian embassies assist with initial complaint forwarding.

Q27: What if I’m victim of job scam/fake loan app?
A: Same portal process. Additionally:

• Report fake job posts to recruitment platform
• Report fake apps to Google Play/App Store
• File complaint with app’s claimed company (often identity theft)
• Check app legitimacy on RBI’s regulated entities list These scams rarely recover money but complaints shut down operations.

Q28: How to report sexual extortion/sextortion?
A: High priority. Use anonymous reporting option for women/child crimes on portal. Simultaneously:

• Do NOT pay extortionists
• Preserve all communications
• Report to cyber cell immediately (may arrange emergency removal from platforms)
• Seek counseling support Police act swiftly on such cases; prosecution rates higher.

Q29: Bank denied refund saying I shared OTP willingly – what to do?
A: File detailed complaint explaining:

• How you were deceived (fear, urgency, impersonation)
• Screenshots of fraudulent messages
• That sharing OTP ≠ authorizing transaction Escalate to Banking Ombudsman citing bank’s failure to detect obvious fraud patterns. Many cases succeed on appeal.

Q30: Should I pay “cyber lawyers” who contacted me promising recovery?
A: NO. Scam. Real recovery happens through:

• Police investigation (free)
• Bank dispute (free)
• Legal proceedings (you hire lawyer of choice, not incoming calls) Anyone demanding upfront payment for “guaranteed recovery” is running secondary scam.

---

Advanced Guidance: Strengthening Your Case

Evidence Collection Best Practices

Screenshots must capture:

Full screen including URL/app header

• Date and time stamp (system clock visible)
• Complete conversation thread (no selective editing)
• Transaction confirmations with all IDs

Create evidence timeline:

Time	Event	Evidence
12:30 PM	Received call from +91-XXXXX	Screenshot of call log
12:35 PM	Visited fake website XYZ.com	Screenshot of URL and page
12:40 PM	Entered card details	Screenshot (blur CVV if shared)
12:42 PM	Received OTP, shared it	Screenshot of SMS
12:45 PM	Money debited	Transaction SMS, bank notification
12:50 PM	Realized fraud	Subsequent communications

Preserve metadata:

• Don’t edit photos (changes metadata)
• Keep original files (not just screenshots)
• Note device details (phone model, OS version)
• Save emails with full headers (View > Show Original in Gmail)

Working with Investigating Officers

Do’s:

• Be respectful, patient, cooperative
• Provide information promptly when requested
• Keep communication professional
• Maintain written record of all interactions
• Offer to assist with technical aspects

Don’ts:

• Don’t harass IO with daily calls
• Don’t make unrealistic demands (immediate arrest, guaranteed recovery)
• Don’t threaten with media/political pressure initially
• Don’t provide conflicting statements
• Don’t interfere with investigation

Building rapport:

• Acknowledge their workload
• Provide organized evidence (folders, timelines)
• Be available for statements/identification
• Express gratitude for their efforts
• Understand investigation takes time

When to Escalate Legally

Consider legal escalation if:

• No action after 60 days with regular follow-ups
• IO non-responsive without valid reason
• Clear evidence ignored
• Procedural violations (refusing FIR, demand for bribes)
• Need for recovery urgently (medical emergency, etc.)

Legal options:

1. Writ petition: To High Court for police inaction
2. Private complaint: Directly to Magistrate under Section 200 CrPC
3. Anticipatory bail: If fraudulent counter-complaint filed against you
4. Civil suit: For damages independent of criminal case

Leveraging Media and Social Awareness

When media attention helps:

• Serial fraud patterns affecting many victims
• Police inaction despite clear evidence
• Novel fraud method requiring public awareness
• Systemic issues (fake government apps, large-scale scams)

How to approach media:

• Document everything first (strong case)
• Approach credible journalists, not sensational tabloids
• Protect your privacy (use pseudonyms if needed)
• Focus on systemic issues, not just personal loss
• Provide evidence journalists can verify

Caution: Media attention can backfire (privacy invasion, alerting fraudsters, legal complications). Use strategically, not desperately.

---

Sector-Specific Guidance

Banking and UPI Frauds

Immediate actions:

1. Call bank fraud helpline within 1 hour
2. Block card/freeze account
3. File cybercrime.gov.in complaint
4. Call 1930 if active fraud
5. File FIR if >₹1 lakh

Bank obligations:

• Zero liability if you report within 3 days and prove no negligence
• Limited liability (₹10,000) if report within 4-7 days
• Investigation completion in 90 days
• Written refund decision

Investment and Trading Scams

Red flags:

• Guaranteed high returns (15%+ monthly)
• Pressure to invest quickly
• Celebrity endorsements (usually fake)
• Unlicensed platforms (check SEBI registry)

Action:

• File NCRP complaint
• Report to SEBI (sebi.gov.in)
• Report to RBI if fake NBFC
• FIR mandatory (usually large amounts)
• Join other victim groups for collective action

Social Media Account Hacking

Recovery steps:

1. Report to platform (Facebook, Instagram, Twitter)
2. File cybercrime.gov.in complaint
3. Alert contacts about compromise
4. Change passwords on all linked accounts
5. Enable 2FA everywhere

FIR needed if:

• Impersonation for fraud/defamation
• Morphed images/videos posted
• Account used for criminal activities
• Commercial/professional damage

E-commerce and Shopping Frauds

Common scenarios:

• Payment made, no delivery
• Fake products received
• Fake websites mimicking brands
• Fake customer care numbers

Action sequence:

1. Contact legitimate seller/platform
2. Raise dispute via payment method (card/UPI)
3. File NCRP complaint
4. Report fake website domain to domain registrar
5. Consumer court for non-delivery (if seller known)

---

Prevention: Building Digital Defense

While this guide focuses on complaint process, prevention is paramount.

Use this Cyber Fraud Prevention checklist for building your defense before getting scammed.

Essential Security Practices

Banking and payments:

• Never share OTP, CVV, card number, full password
• Verify URLs before entering credentials (look for https://, spelling)
• Set transaction limits and alerts
• Use separate card for online transactions
• Enable transaction notifications

Communication hygiene:

• Verify caller identity independently (hang up, call back on official number)
• No government agency demands immediate payment via call
• No arrest warrant served via WhatsApp/email
• Courts/police don’t call for verification

Digital literacy:

• Too good to be true offers are scams
• Celebrity deepfakes promoting investments are fake
• Job offers requiring upfront payment are frauds
• KYC update urgent calls from “banks” are scams
• “You won a prize” messages are traps

Protecting Vulnerable Populations

Elderly and senior citizens:

• Educate about common scams targeting them
• Set spending limits on accounts
• Monitor account activity regularly
• Create code word for family emergency verification
• Report all suspicious contacts

Youth and students:

• Beware fake scholarship/admission frauds
• Part-time job scams (money mule recruitment)
• Romance and lottery frauds
• Game/app-based phishing
• Fake internship scams

Organizational Best Practices

For businesses:

• Employee cyber security training
• Multi-factor authentication mandatory
• Regular security audits
• Vendor verification processes
• Incident response plan with NCRP/cyber cell contact

For educational institutions:

• Student awareness programs
• Safe social media guidelines
• Reporting mechanism for cyber bullying
• Digital literacy in curriculum

---

State-Specific Resources

While NCRP is national, each state has dedicated cyber cells.

Major State Cyber Crime Cells

Delhi:
Special Cell, IFSO Unit
Website: https://cybercrime.delhi.gov.in
Helpline: 011-23469261

Maharashtra:
Maharashtra Cyber Cell
Website: https://cybercrime.mahapolicecrime.gov.in
Helpline: 1930

Karnataka:
Cyber Crime Police Station, Bengaluru
Website: https://cctns ksp.gov.in/cybercrime
Helpline: 080-22868415

Uttar Pradesh:
UP Cyber Crime Cell
Website: https://uppolice.gov.in/en/cyber-crime
Helpline: 155260

Tamil Nadu:
TN Cyber Crime Wing
Website: https://cybercrime.tnpolice.gov.in
Helpline: 1930

Complete list: https://cybercrime.gov.in/Webform/Crime_NodalGrivanceList.aspx

Regional Language Support

NCRP offers Hindi and English. For regional language assistance:

• Contact state cyber cell in local language
• Many states have regional language helplines
• Community mediation centers provide translation support
• Legal aid clinics offer multi-lingual guidance

---

Victim Support and Counseling

Cyber crime impacts mental health alongside financial loss.

Emotional Support Resources

Helplines:

• iCall: 9152987821 (psychosocial counseling, 8 AM-10 PM)
• Vandrevala Foundation: 1860-2662-345 (24/7 mental health support)
• AASRA: 91-22-27546669 (crisis intervention)

Support groups:

• Online cyber crime victim forums
• WhatsApp support groups (verify legitimacy)
• Local NGO victim assistance programs

Financial Counseling

Post-fraud financial recovery:

• Credit score monitoring (fraud may affect rating)
• Debt counseling if loans taken by fraudsters
• Financial planning to rebuild savings
• Employment assistance if job loss due to fraud

Legal Aid Resources

Free legal services:

• District Legal Services Authority (DLSA) in every district
• State Legal Services Authority
• National Legal Services Authority (NALSA)
• Law university clinics
• Pro bono cyber law advocates

Eligibility: Income criteria vary by state; serious crime victims often qualify regardless.

---

Future of Cyber Crime Reporting in India

Upcoming Improvements

NCRP 2.0 features (planned 2026):

• AI-powered auto-categorization
• Real-time suspect database cross-referencing
• Blockchain evidence verification
• Integrated video complaint filing
• Multi-language support (15+ languages)
• SMS-based complaint filing

Enhanced recovery mechanisms:

• Automated beneficiary account freezing within minutes
• Direct bank integration (no manual coordination)
• Cryptocurrency tracing partnerships
• International fund recovery treaties

Bharatiya Nyaya Sanhita (BNS) Impact

The BNS introduced in 2023 and enacted July 2024 enhanced cyber crime provisions:

• Stricter penalties for digital fraud
• Clearer definitions of cyber offences
• Streamlined prosecution
• Victim compensation provisions

Section 308(2) BNS: Punishment for criminal intimidation, including digital threats
Section 318 BNS: Cheating and dishonestly inducing delivery of property, including online frauds

---

Call to Action: What to Do Right Now

If you’re reading this after being defrauded:

Within 1 hour:

1. Call your bank’s fraud helpline – block accounts/cards
2. Call 1930 for active financial fraud
3. File complaint on cybercrime.gov.in
4. Screenshot all evidence
5. Stop all communication with fraudster

Within 24 hours:

1. File FIR if amount exceeds ₹1 lakh or serious offense
2. Gather complete evidence folder
3. Inform employer if work-related fraud
4. Alert family/friends about scam pattern
5. Change all compromised passwords

Within 1 week:

1. First follow-up with IO/cyber cell
2. Bank dispute initiation
3. Document all communications
4. Join victim support groups if needed
5. Review and strengthen personal cyber security

Ongoing:

1. Follow up every 2-3 weeks
2. Maintain evidence safely
3. Be available for investigation
4. Share learnings to prevent others’ victimization

---

Prevention Resources to Share

Bookmark and share:

• National Cyber Crime Portal: https://cybercrime.gov.in
• RBI fraud reporting: https://rbi.org.in/scripts/FAQView.aspx?Id=131
• SEBI investor awareness: https://investor.sebi.gov.in
• Fact-checking: PIB Fact Check on Twitter/X
• Awareness campaigns: Cyber Dost on social media

Educational materials:

• CERT-In security advisories: https://cert-in.org.in
• Reserve Bank customer education: https://rbi.org.in/financialeducation
• Press Information Bureau fake news alerts
• State police cyber awareness initiatives

---

Conclusion: Knowledge Empowers, Action Protects

The cyber crime complaint process in India, while improving, still requires victim awareness, promptness, and persistence. Understanding the distinction between portal complaints and FIR, knowing when each is required, and following up systematically dramatically increases successful outcomes.

Recovery rates improved from 11% to 24% in 2025, demonstrating that the system does work when victims report promptly and follow procedures correctly. Every complaint, even for small amounts, contributes to pattern recognition that eventually dismantles organized cyber crime networks.

Key takeaways:

• Speed trumps everything – report within first hour
• Evidence quality determines investigation quality
• Follow-up converts complaints into action
• Recovery is possible but not guaranteed
• Prevention is infinitely better than cure

Your role extends beyond personal recovery. By filing complaints, you:

• Help police identify serial fraudsters
• Contribute to national cyber crime database
• Protect future potential victims
• Strengthen India’s cyber security ecosystem

Final word: If you or someone you know faces cyber fraud, stay calm, act systematically using this guide, and persist. The system has flaws, but informed, determined victims achieve results. Save this guide, share it widely, and build digital India’s strongest defense – an aware citizenry.

---

[Bookmark this guide | Share on WhatsApp | Download PDF | Subscribe for updates]

Internal linking placeholder:

• Complete Guide to Digital Banking Security in India
• How to Identify and Avoid Investment Scams
• Protecting Your Social Media Accounts: 2026 Security Guide

---

Disclaimer: This guide provides general information about India’s cyber crime complaint process based on publicly available resources and current laws as of January 2026. It does not constitute legal advice. For specific legal counsel, consult a qualified cyber law attorney. Procedures may vary by state and evolve over time – always verify latest guidelines on official government portals.