Chinese scammers have found a new way to exploit Indians and people in other developing countries. What’s worrying, though, in India’s case, these Chinese scammers are using India’s digital payments ecosystem, mainly UPI, to not only scam Indian citizens but also to get them to launder their loot to China.
But how exactly are these Chinese scammers exploiting people? By posing as instant loan apps, real-money gaming apps, and fraudulent investment apps.
By now, we have heard of stories and seen countless news articles on how particular loan apps have duped people into taking a loan from then and then wrecked their lives.
Instead of going through the trouble of paying loan seekers and then unleashing their collection agents after them, Chinese scammers have found a new way.
Trapping people using loan offers, games
An investigative report from CloudSEK has revealed that scammers are now using illegal instant loan apps to lure thousands of victims with false promises of substantial loans and easy repayments. To process the loans, these apps ask for a few basic details; about 5-10 percent of the loan amount is a processing fee. And because these loan apps promise instant loans of up to 5-10 lakhs, the processing fee can be substantial.
In some cases, these scammers pose as a real-money gaming app, which first lures in victims using a small reward and then gets them to invest real money into the game.
Once they collect the processing fee, they then vanish. These scammers are evading actions by law enforcement agencies by using Chinese payment gateways. In some instances, it was found that the money was sent to an Indian bank account, which was then routed through several mule accounts before it was finally laundered out of India to China.
Rs 37 Lakhs laundered in two months using just one app
During their investigation, CloudSEK found that at least 55 harmful Android apps have been distributed through various channels. Furthermore, several scammers get their victims to sideload apps not found on the Google PlayStore. CloudSEK identified about 15 Chinese gateways that these apps directed to.
Furthermore, the investigation also revealed that between July 22, 2023 – September 18, 2023, a total of Rs 37 Lakhs was looted and laundered to China from just one of these apps. CloudSEK also emphasizes that this figure was from just one app, and this was an amount they could verify. CloudSEK believes the actual amount laundered must be substantially high.
“A notable trend we’ve observed is scammers exploiting Chinese payment gateways due to their relative ease of use and limited regulatory scrutiny. These gateways offer a convenient bridge to funnel funds outside India, leveraging sophisticated techniques that blur jurisdictional lines, making tracking and intercepting the money trail challenging. This enables scammers to sidestep the legal and financial roadblocks, making it imperative for authorities to enhance cooperation and adopt advanced measures to counter this sophisticated threat.” said Sparsh Kulshrestha, Senior Security Analyst at CloudSEK
The curious case of Indian money mules
CloudSEK’s investigation also exposed some of the loopholes in our banking systems. Scammers based in China open up several fraudulent payment gateways, primarily hosted in China. These gateways exploit UPI’s QR code by generating fake QR codes that redirect victims to legitimate UPI apps like PhonePe and GPay, linked to bank accounts of money mules.
The scammers recruit individuals via Telegram, offering them a commission to provide their bank accounts as a place to direct the money and park it there. Instead of getting people to open new accounts, these scammers look for people who already have bank accounts in small, cooperative banks, as these banks don’t usually have the infrastructure to flag suspicious activities.
These recruits are then instructed to change the associated mobile numbers with banks, granting the scammers complete remote control over the accounts. These compromised bank accounts are then used to receive payments from victims through the fraudulent payment gateways, distributed through several similar accounts, and finally laundered to China through hawala systems.
