CBI chargesheets 4 Chinese behind Rs 1,000 cr cyber crime racket; 111 shell companies unmasked
New Delhi (PTI): The CBI has filed a chargesheet against 17 people, including four Chinese nationals, and 58 companies for their alleged roles in a transnational cyber fraud network that siphoned off over Rs 1,000 crore through a sprawling web of shell entities and digital scams, officials said on Sunday.
After busting the racket in October, investigators unravelled a single, tightly coordinated syndicate that relied on an elaborate digital and financial infrastructure to run a range of frauds. These included misleading loan applications, fake investment schemes, Ponzi and multi-level marketing models, bogus part-time job offers and fraudulent online gaming platforms.
According to the probe agency's final report, the group layered the flow of illicit funds through 111 shell companies, routing about Rs 1,000 crore via mule accounts. One account received more than Rs 152 crore in a short span.
The shell companies, the CBI said, were incorporated using dummy directors, forged or misleading documents, fake addresses and false statements of business objectives.
"These shell entities were used to open bank accounts and merchant accounts with various payment gateways, enabling rapid layering and diversion of proceeds of crime," a CBI spokesperson said in a statement.
Investigators traced the origins of the scam to 2020, when the country was grappling with the COVID-19 pandemic. The shell companies were allegedly incorporated at the direction of four Chinese handlers -- Zou Yi, Huan Liu, Weijian Liu and Guanhua Wang.
Their Indian associates procured identity documents from unsuspecting individuals, which were then used to establish the network of shell companies and mule accounts to launder proceeds from the scams and obscure the money trail.
The investigation exposed communication links and operational control that, the agency said, nailed the role of Chinese masterminds running the fraud network from abroad.
"Significantly, a UPI ID linked to the bank accounts of two Indian accused was found to be active in a foreign location as late as August 2025, conclusively establishing continued foreign control and real-time operational oversight of the fraud infrastructure from outside India," the CBI statement said.
The probe found that the racketeers employed a highly layered, technology-driven modus operandi, using Google advertisements, bulk SMS campaigns, SIM-box-based messaging systems, cloud infrastructure, fintech platforms and multiple mule bank accounts.
"Each stage of the operation -- from luring victims to collection and movement of funds -- was deliberately structured to conceal the identities of the actual controllers and evade detection by law enforcement agencies," the spokesperson said.
The chargesheet names 17 individuals, including the four Chinese nationals, and 58 companies.
The investigation was launched on the inputs from the Indian Cyber Crime Coordination Centre (I4C) under the Ministry of Home Affairs, which flagged large-scale cheating of citizens through online investment and employment schemes, resulting in the arrest of three individuals in October.
"Though initially appearing as isolated complaints, detailed analysis by CBI revealed striking similarities in applications used, fund-flow patterns, payment gateways and digital footprints, pointing towards a common organised conspiracy," the agency said.
Following the October arrests, the CBI conducted searches at 27 locations across Karnataka, Tamil Nadu, Kerala, Andhra Pradesh, Jharkhand and Haryana, seizing digital devices, documents and financial records that were later subjected to detailed forensic examination.
Let the Truth be known. If you read VB and like VB, please be a VB Supporter and Help us deliver the Truth to one and all.
Terror threat: Security heightened near key religious, heritage sites in Delhi
New Delhi (PTI): Security was tightened across key religious and heritage sites in Delhi on Saturday, including areas around the Red Fort and parts of Chandni Chowk, following intelligence inputs suggesting a possible terror threat, an official said.
Security agencies issued an alert on a possible explosion threat near Red Fort, a major tourist destination and high-security zone, after Central intelligence agencies indicated that Pakistan-based terror outfit Lashkar-e-Taiba (LeT) has allegedly kept prominent religious places in India on its target list.
Sources said specific inputs suggested that a temple in the Chandni Chowk area could be among the potential targets.
ALSO READ: Artificial intelligence, hologram tech bring 'Arjuna', 'Lord Krishna' at AI Summit
While the intelligence inputs are being verified and assessed, security has been stepped up in and around sensitive religious places and crowded public areas, they added.
Intelligence agencies indicated that LeT could be attempting to carry out an Improvised Explosive Device (IED)-based attack. The alleged plan is reportedly linked to attempts by the terror group to avenge the February 6 blast at a mosque in Islamabad, Pakistan, sources said.
Central agencies and Delhi Police units are maintaining close coordination, and surveillance has been intensified through CCTV monitoring, vehicle checks and deployment of additional personnel at vulnerable points. Bomb disposal squads, dog squads and quick reaction teams have also been placed on standby at strategic locations, they added.
The alert comes in the backdrop of the deadly car explosion near the historic Red Fort on November 10, 2025, which killed at least 13 people and injured more than 20 others. The blast occurred when a car loaded with explosives detonated near Gate No 1 of the Red Fort metro station, igniting multiple vehicles nearby and causing panic in the densely populated area.
Security agencies have urged people to remain vigilant and immediately inform police or emergency services about any suspicious objects or activity. However, officials said there is no cause for panic and that the measures are precautionary in nature.
Further intelligence gathering and verification of inputs are underway, an official said.
