Cybercrime-as-a-Service Racket Busted: Gujarat CID Arrests Two for Selling OTPs to Fraudsters

Gandhinagar: The Cyber Centre of Excellence under CID Crime, Gujarat Police, has exposed a hidden Cybercrime-as-a-Service racket that quietly powered online frauds across the country by supplying virtual numbers and One-Time Passwords (OTPs) to cybercriminals.

Two men from Gwalior, Madhya Pradesh, were arrested for running backend operations that enabled phishing attacks, fake account creation and unauthorised access to digital platforms - without directly interacting with victims.

How Cybercrime-as-a-Service Works

Investigators said the case highlights a growing model where cybercrime functions like an outsourced business. Instead of executing scams, operators sell tools that allow fraud to happen.

The accused supplied OTPs and virtual numbers used to bypass login and transaction verification systems. Fraudsters used these to open fake accounts, hijack genuine ones and carry out financial fraud at scale, while service providers earned quietly in the background.

Such backend enablement is increasingly being detected during compliance reviews and bookkeeping services in india, where unexplained digital transactions and credential misuse often point to hidden cyber intermediaries.

Websites and Telegram Channels Under Scanner

Police found that the accused operated OTPBUY.COM and OTPCHINA.SOLUTION, websites openly selling OTP and virtual number services.

These platforms were promoted through Telegram channels @otpbuycom and @otpbuysupport, which acted as order and support hubs. OTPs were sold for ₹15 to ₹25 per transaction, and investigators said the high volume translated into significant earnings.

Money Trail Reveals Scale of Operation

Financial analysis revealed bank transactions worth ₹17,54,265 linked to the accused. Investigators also traced USDT cryptocurrency transfers worth ₹20,00,000, indicating deliberate layering of proceeds.

The operation used 11 UPI IDs, two crypto wallets, and seven foreign-hosted websites, a structure designed to delay detection and complicate tracing.

Arrests and Seizures

CID teams arrested Abdesh Rawat (23) and Shivam Rawat (18) from Balaji Puram Colony, Gwalior.

Four mobile phones were seized, which investigators believe functioned as control centres containing OTP logs, Telegram communications, website credentials and payment records.

Links to Other Accused Under Probe

Police confirmed the arrested men acted in coordination with others, including individuals identified as Biku and Sonu alias Jatin Tripathi. Investigators are also working to identify users who purchased OTP services to commit fraud.

A New Face of Organised Cybercrime

Officials described the case as an example of modern cybercrime where roles are divided - one group provides access tools, another commits fraud, and funds are routed through layered digital channels.

This structure allows scams to scale rapidly while distancing service providers from direct victim contact.

Advisory Issued for Citizens

Gujarat Police warned citizens against sharing OTPs, SIM cards or bank details and cautioned that renting bank accounts or SIMs can attract criminal liability.

People were advised to report cyber fraud immediately on 1930, as early reporting significantly improves chances of freezing transactions.