India’s Enforcement Directorate (ED) has cracked open an alleged transnational cyber fraud and money-laundering syndicate that siphoned more than ₹303 crore (~$31.7 million) from Indian victims before routing the money abroad through mule accounts, shell companies, overseas fintech platforms, and cryptocurrency.
According to The Week’s July 13 report, 10 accused have been arrested so far, and investigators say the crypto trail ends in private wallets allegedly controlled by beneficiaries based in Dubai.
Crypto Frozen, Prosecution Widened
Search teams fanned out across 14 locations in Delhi, Gurugram, Rajasthan, Gujarat, Telangana, Maharashtra and West Bengal. The raids yielded ₹47 lakh in cash and led to the freezing of 1,60,339 Tether (USDT), 118.73 Solana (SOL) and 563 Ethereum (ETH), along with the recovery of mobile phones, laptops and financial records.
The agency has also attached bank balances worth over ₹8.69 crore (~$910,000) and expanded the prosecution from 18 to 45 accused persons and entities. Several of the accused allegedly tried to destroy evidence after the probe began, deleting Telegram chats, WhatsApp conversations, crypto wallet details and transaction records.
Fake Names, Small Payouts, Big Losses
The network cheated victims through fake investment schemes, part-time jobs and task-based frauds, online gaming and betting platforms, and instant loan applications. First contact came through fraudulent websites, mobile apps, WhatsApp accounts, and Telegram groups, where operators hid behind fictitious identities such as Jennifer, Oscar, Tom Support, and Country Manager.
The playbook was familiar. Victims received small initial payouts to build trust, and once they committed larger sums, they were pushed to pay extra taxes, verification charges, and security deposits. After that, communication simply went dead. Surat cyber police flagged the same pattern last week while arresting a software engineer whose mule account was linked to ₹24.72 crore (~$2.59 million) in cyber fraud complaints.
Bank Accounts Run From Abroad
Investigators called the remote control of Indian mule accounts the biggest breakthrough in the case. Banking credentials were allegedly passed around on Telegram, while Zoho email accounts and SMS forwarding applications relayed OTPs and bank alerts to handlers overseas, letting them authenticate transactions without ever touching the registered mobile phones.
The ED said this setup enabled money to move the moment it landed, “significantly reducing the possibility of recovery, debit freeze or law-enforcement intervention.”
The Money Trail
The probe identified 216 mule bank accounts through which roughly ₹303.24 crore (~$31.72 million) in proceeds of crime were laundered. Fresh credits of around ₹571.65 crore (~$59.80 million) surfaced during the investigation itself, a sign the network kept operating even after enforcement action started.
The funds were layered through shell entities using fabricated invoices and circular banking transactions, pushed through overseas fintech platforms, and converted into cryptocurrency on exchanges including Binance, GetBit and Carretx before landing in foreign-controlled wallets.
The case began in March 2024 under the Prevention of Money Laundering Act (PMLA), built on two First Information Reports (FIRs) filed by the Central Bureau of Investigation (CBI).
Inputs from the Financial Intelligence Unit-India (FIU-IND) later showed that nearly ₹641 crore had moved through PYYPL, a United Arab Emirates (UAE) based fintech platform, using Indian-issued debit cards, prompting the analysis of more than 10,000 linked bank accounts.
Another ₹900.42 crore (~$94.19 million) was traced through 17 IndusInd Bank accounts tied to entities allegedly running fake e-commerce, betting and gambling fronts.
Calling the syndicate highly organised, professionally managed and technologically sophisticated, the ED said further investigation is underway to identify more foreign operators, crypto wallets, shell companies and assets connected to the network.
A Relentless Enforcement Month
The Dubai-linked bust caps an unusually busy stretch for the agency. Over the past week alone, the ED seized ₹3.35 crore in crypto during raids on a fake investment and work-from-home racket spanning Tamil Nadu, Kerala and Srinagar, and searched multiple locations in West Bengal in a probe covering crypto investment fraud with suspected Dubai-linked fund flows.
The pace matches the agency’s stated direction. ED Director Rahul Navin has already named crypto fraud a key enforcement priority alongside terror financing and cyber-enabled crimes, and the agency filed 812 charge sheets in 2025-26, nearly double the previous period, with a conviction rate of 94%.
Also Read: ATC Coin Fraud: India’s ED Attaches ₹55.5 Cr in Mumbai Properties
