AEPS Scam Bank Security - Protect Yourself Informative 0 0 5 0 Apr 30, 2026 2026-04-30T07:20:38-05:00 Apr 30, 2026 2026-04-30T07:27:33-05:00 Online Threat Alerts (OTA) The Aadhaar Enabled Payment System (AePS) is a banking service that allows transactions (cash withdrawals, deposits, etc.) using only an Aadhaar number and biometric authentication (fingerprint or iris scan). While convenient, it has become a target for scams because it typically does not require a PIN or OTP. Common AePS ScamsBiometric Cloning: Fraudsters obtain fingerprints from public documents (like land records) and create silicon or glue replicas to authorize transactions.Impersonation: Scammers pose as bank agents or government officials to trick victims into providing their Aadhaar number and scanning their finger on a fake device.Device Tampering: Fraudsters use compromised biometric scanners that secretly record biometric data while appearing to perform a legitimate transaction.Phishing/Vishing: Deceptive calls or messages urge users to "verify" their account by clicking a link or providing details to avoid account suspension.Essential Security MeasuresThe most effective way to prevent these scams is by locking your Aadhaar biometrics.Lock Your Biometrics: Use the UIDAI Website or mAadhaar app to disable biometric authentication. Once locked, no one can use your fingerprint for transactions until you temporarily unlock it.Transact at Authorized Points Only: Only use AePS services at official bank branches or through registered Banking Correspondents (BCs) with clear identification.Enable Transaction Alerts: Ensure your mobile number is linked to your bank account to receive immediate SMS alerts for every debit.Use Masked Aadhaar: Share a "Masked Aadhaar" (which hides the first 8 digits) instead of your full Aadhaar card for routine identity verification.New 2026 RBI Security Rules: The Reserve Bank of India (RBI) has mandated stricter security effective January 1, 2026, including:Liveness Detection: Technology to ensure a biometric scan is from a live person, not a clone.Two-Factor Authentication (2FA): OTP-based verification for withdrawals exceeding ₹5,000.What to do if scammed?If you notice an unauthorized transaction, act within 48 to 72 hours to minimize liability.Bank: Immediately call your bank's fraud helpline to block your account.Cybercrime Portal: File a complaint at the National Cybercrime Reporting Portal or call the helpline at 1930.Police: File a First Information Report (FIR) at your local police station.