A recent incident in Lucknow highlights how cyber fraud threats are becoming more sophisticated and can target even legal experts. A well-known cyber law advocate received a suspicious smishing message on a routine afternoon, exposing the growing danger of SMS-based phishing attacks in India. According to the Indian Cyber Crime Coordination Centre (I4C), more than 1.2 lakh smishing cases were reported across the country in 2025, resulting in financial losses exceeding ₹1,500 crore.
The fraudulent message was designed to look like an urgent banking alert and read: “RS 30,000 credited to a/c XXXX….Verify immediately via [shortened malicious link]”. Such messages are crafted to trigger panic and push recipients to click on malicious links. Smishing, or SMS phishing, is a cyberattack that tricks people into revealing sensitive information such as passwords, bank details or login credentials through deceptive text messages. Attackers often pretend to represent banks, delivery companies or government agencies, directing victims to fake websites that steal personal data or install malware.
Cybersecurity experts say the rise of smishing in India is linked to the country’s massive mobile user base, which has crossed 1.1 billion users. Officials from the Uttar Pradesh Police Cyber Cell reported a 40% increase in such cases in 2026. Investigators believe many of these scams are connected to transnational cybercrime groups using VoIP numbers to bypass traditional monitoring systems. “Smishing bypasses email filters, hitting directly on phones,” said the advocate, who regularly handles cyber litigation under the Information Technology Act, 2000 and the Bharatiya Nyaya Sanhita. Fraudsters commonly use bait messages about delivery updates, lottery winnings or government schemes like PM-KISAN.
The advocate has urged people to remain cautious and avoid clicking unknown SMS links. Key safety steps include verifying alerts through official banking apps, enabling 2-factor authentication, using antivirus apps with SMS scanning features and reporting suspicious activity through the national cybercrime portal cybercrime.gov.in or helpline 1930. Authorities have already dismantled several smishing networks in Lucknow, but the expert warns that stronger technological enforcement is required. “Laws like Section 66D of IT Act exist, but enforcement needs tech upgrades.” The incident serves as a reminder that in today’s digital world, anyone can become a target of cybercrime.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream LinkedIn | The Mainstream Facebook | The Mainstream Youtube | The Mainstream Twitter
About us:
The Mainstream is a premier platform delivering the latest updates and informed perspectives across the technology business and cyber landscape. Built on research-driven, thought leadership and original intellectual property, The Mainstream also curates summits & conferences that convene decision makers to explore how technology reshapes industries and leadership. With a growing presence in India and globally across the Middle East, Africa, ASEAN, the USA, the UK and Australia, The Mainstream carries a vision to bring the latest happenings and insights to 8.2 billion people and to place technology at the centre of conversation for leaders navigating the future.
