India’s financial sector, a cornerstone of its rapidly expanding economy, continually grapples with the persistent challenge of fraud. A recent high-profile incident at IDFC First Bank, where four current and former employees allegedly colluded to siphon off ₹590 crore from a Haryana government department’s account, starkly illustrates the enduring vulnerabilities within the system. The discrepancy was uncovered only when the government department attempted to close its account, highlighting the sophisticated nature of internal fraud and the critical importance of robust reconciliation processes. While the Haryana government reportedly recovered its funds, this case underscores a broader narrative: while India’s banking system demonstrates resilience against systemic fraud, individual customers and institutions face significant, evolving risks, particularly as digital transactions proliferate.
The shift towards a digitally-driven economy has profoundly reshaped the contours of financial crime. India’s aggressive push for digital payments, epitomized by the Unified Payments Interface (UPI), has brought unprecedented convenience and financial inclusion but also opened new avenues for fraudsters. The sheer volume of digital transactions creates a fertile ground for scams ranging from phishing and identity theft to sophisticated malware attacks. This digital transformation, while essential for economic progress, necessitates a parallel evolution in fraud detection, prevention, and recovery mechanisms.
Interpreting the landscape of banking fraud in India requires careful consideration of reporting methodologies. Indian banks reported 11,615 cases of fraud involving ₹3,497 crore in the fiscal year 2024-25. These figures, while substantial, were actually lower than those reported in the previous fiscal year. However, headline numbers can be misleading due to regulatory interventions. A significant reclassification exercise, mandated by a 2023 Supreme Court judgment regarding an earlier Reserve Bank of India (RBI) order on fraud classification, forced banks to re-examine numerous cases. Consequently, the total value of reported frauds, when measured by the reporting date rather than the actual occurrence date, tripled in 2024-25 over the preceding year, with a large proportion of this increase attributable to incidents from prior periods. This demonstrates a crucial reporting lag, where the true scale of historical fraud often emerges years later, making real-time trend analysis complex.
Despite these significant figures, fraud does not pose an existential threat to the stability of India’s banking system. As of 2024-25, the aggregate value of frauds reported by banks stood at ₹34,771 crore. When juxtaposed against the ₹241 trillion in deposits held by banks as of March 31, 2025, this amount represents a minuscule 0.14%. Furthermore, the value of reported fraud accounted for approximately 5% of the total operating profit of all banks in 2024-25. These metrics suggest that, at a macroeconomic level, the system possesses sufficient capital buffers and operational profitability to absorb these losses without jeopardizing overall financial stability. This robust systemic resilience is a testament to the RBI’s stringent regulatory oversight and capital adequacy norms, which aim to safeguard the broader financial infrastructure from isolated shocks.
However, beneath this veneer of systemic stability lies a nuanced story of disparate risk profiles across different banking segments. Public sector banks (PSBs), which collectively manage about 55% of the banking system’s total assets, accounted for a disproportionately high 71% of the total amount involved in reported frauds. The list of the top ten banks by fraud value in 2024-25 is heavily skewed towards PSBs, with State Bank of India leading the pack. While IDBI Bank, now officially classified as a private bank, ranks second, its largest shareholder, government-owned Life Insurance Corporation, links it closely to the public sector. Only Axis Bank and HDFC Bank represent the private sector on this list. This trend often reflects the legacy challenges within PSBs, including larger exposure to corporate loans, governance issues, and sometimes less agile technological infrastructure compared to their private counterparts.
A closer look reveals distinct patterns. For HDFC Bank and Axis Bank, the number of fraud cases is remarkably high (second only to SBI), but the total amount involved is relatively low. This indicates a significantly smaller average fraud size. For instance, the average fraud value for HDFC Bank was approximately ₹17 lakh, dramatically lower than SBI’s average of about ₹1.9 crore. While granular bank-wise data on fraud types remains confidential, the RBI has indicated that card and internet-related frauds constitute the highest number of cases reported by private banks. This suggests that private banks, with their strong focus on retail and digital banking, face a higher volume of smaller, digitally-enabled frauds, whereas PSBs contend with fewer but significantly larger loan-related frauds, often involving insider complicity or large-scale corporate defaults. The shift in fraud categories also underscores this, with loan-related fraud increasing across all bank groups except PSBs, a direct consequence of the reclassification of older, larger cases.
The rise of UPI has brought both immense economic benefits and new vectors for fraud. Between 2021-22 and 2023-24, the number of UPI fraud cases tripled, with the amount involved increasing by approximately 4.5 times. While 2024-25 saw a year-on-year decline in these figures, the absolute numbers remain significant. The typical UPI fraud involves social engineering, where fraudsters trick users into sharing PINs, clicking malicious links, or granting remote access. Despite the alarming growth in UPI fraud cases, it’s crucial to contextualize these figures against the platform’s monumental transaction volumes. In the eight months leading up to November 2025, approximately one million UPI fraud cases involving around ₹805 crore constituted a minuscule 0.00068% of total UPI transactions by volume and 0.0039% by value. This indicates that while the platform is generally secure, the sheer scale of its operations means that even a tiny fraction of fraudulent activity translates into substantial losses for individuals.
Perhaps the most distressing aspect for victims is the abysmal recovery rate. When a customer disputes an unauthorized UPI transaction, banks initiate a ‘chargeback’ process to recover funds. In December 2025, the government informed Parliament that while 22% of fraud chargebacks raised between April and September 2025 were acted upon within seven days, and 92% within 30 days, actual recoveries were negligible. A mere 6% of the total amount involved in these fraud chargebacks was successfully returned to victims. This stark statistic highlights a critical gap in consumer protection and the challenges inherent in tracing and recovering funds that are often quickly moved across multiple accounts, sometimes internationally. Nine banks accounted for about 57% of all chargebacks during this period, with Yes Bank (15%) and Axis Bank (12%) leading, a phenomenon partly explained by their high UPI transaction volumes (Yes Bank accounted for 40.5% and Axis Bank 9% of UPI transactions in January 2026). While high chargeback volumes for these banks reflect their extensive digital footprint, the low recovery rate remains a significant concern for customer trust and financial security.
Addressing these escalating threats requires a multi-pronged strategy encompassing technological innovation, robust regulatory frameworks, and proactive customer education. Banks must invest continuously in advanced fraud analytics, artificial intelligence, and machine learning to detect suspicious patterns in real-time. Regulatory bodies like the RBI need to refine reporting standards, ensuring greater transparency and uniformity across all payment channels, including UPI, to provide a clearer picture of the evolving threat landscape. Furthermore, fostering greater collaboration between banks, payment processors, and law enforcement agencies is essential for faster tracing and recovery of fraudulent funds. Ultimately, empowering customers through continuous awareness campaigns about common fraud tactics, emphasizing secure digital practices, and clarifying liability in case of fraud will be crucial to maintaining confidence in India’s dynamic and increasingly digital financial ecosystem. The challenge lies in balancing innovation with security, ensuring that the benefits of digital finance are accessible to all without exposing them to undue risk.
