Blog

Also Read: Understanding Cyber Crime in India's Major Cities

Understanding the “Golden Hour” in Cyber Fraud

What Is the Golden Hour?

The Golden Hour refers to the first few hours after a cyber fraud occurs. During this time:

1. The stolen money often remains in the scammer’s or mule account

2. Banks can freeze transactions before funds are layered or withdrawn

3. Digital trails (IP addresses, UPI routes, device logs) are still intact

Delay = lower recovery chances

Cybercriminals usually move stolen money through multiple accounts within hours. Once the money leaves the first account, recovery becomes difficult.

Also Read: 15 Best Ways to Protect Yourself from Cybercrime in 2025

Step 1: Call the National Cybercrime Helpline — 1930

What Is 1930?

1930 is India’s National Cybercrime Helpline, operational 24×7, dedicated mainly to financial cyber frauds.

This includes:

1. UPI fraud

2. Debit/credit card misuse

3. Internet banking fraud

4. Wallet fraud

5. Fake investment scams

6. Online shopping scams

Why Calling 1930 Is Critical

When you call 1930:

1. Your complaint is logged immediately

2. Banks and payment platforms are alerted in real time

3. Suspect accounts can be temporarily frozen

4. Your case enters the national cybercrime system

Many victims recover money only because they called 1930 in time.

What Information You Should Keep Ready

1. Date & time of fraud

2. Amount lost

3. Mode of payment (UPI / card / net banking)

4. Transaction ID or UTR

5. Bank or wallet name

Even if you don’t have everything, call first — details can be added later.

Also Read: Cyber Extortion In India : How To Deal With It

Step 2: File an e-FIR on the National Cybercrime Reporting Portal

What Is an e-FIR in Cybercrime Cases?

In cyber offences, an online complaint filed on the official portal functions like an FIR. It is legally recognized and forwarded to the appropriate cyber police unit.

The official portal is operated by the Government of India:

National Cyber Crime Reporting Portal

Where to File the Complaint

https://www.cybercrime.gov.in

Step-by-Step Guide to Filing an e-FIR Online

Step 1: Visit the Portal

Go to cybercrime.gov.in and click on “Report Cyber Crime”.

Step 2: Choose the Type of Complaint

You will see categories such as:

1. Financial Fraud

2. Online & Social Media Crime

3. Identity Theft

4. Hacking / Data Breach

Choose the option that best matches your case.

Step 3: Enter Your Details

Fill in:

1. Name

2. Mobile number

3. Email ID

4. Address

(Your details are protected and used only for investigation.)

Also Read: Unauthorized Bank Transaction? Here’s How to Get Your Money Back Quickly!

Step 4: Describe the Incident Clearly

Explain:

1. How the fraud happened

2. What the scammer said or did

3. How money was transferred

4. What you discovered later

Write clearly and honestly — no legal language required.

Step 5: Upload Evidence

Attach:

1. Bank SMS alerts

2. Transaction screenshots

3. WhatsApp chats

4. Scam website/app screenshots

5. Emails or social media profiles

Step 6: Submit & Save Complaint ID

After submission:

1. You receive a Complaint ID

2. The complaint is forwarded automatically to the concerned cyber cell

This Complaint ID is extremely important for follow-ups.

Also Read: The Rise of Online Lawyer Consultation: A Comprehensive Guide

Step 3: Contact Your Bank or Wallet Provider Immediately

While the police system works on freezing accounts, you must also alert your bank or wallet provider directly.

What to Tell Your Bank

1. Inform them of unauthorized or fraudulent transaction

2. Share transaction ID

3. Ask for temporary freeze or lien marking

4. Request escalation to their fraud response team

Important Security Actions

Change:

1. Net banking password

2. UPI PIN

3. Emai l password

Enable:

1. Two-factor authentication (2FA)

2. Transaction alerts

Banks work closely with cyber police, and early bank intimation strengthens your case.

How Do Police Freeze Cyber Scammers’ Accounts?

Understanding Account Freezing (In Simple Terms)

Once your complaint is verified:

1. Police identify the first beneficiary account

2. Banks are instructed to freeze debit access

3. Money cannot be withdrawn or transferred

4. Further investigation traces connected accounts

Role of Mule Accounts

Scammers often use “money mule” accounts — accounts of individuals who allow their bank details to be misused.

Freezing these accounts:

1. Stops further laundering

2. Helps identify larger fraud networks

This coordinated approach has helped cyber police units across India block massive fraud amounts.

Role of State Cyber Cells & Maharashtra Cyber

State cyber units play a major role in enforcement. One of the most advanced units in India is Maharashtra Cyber.

Senior officers, including Yashasvi Yadav, have publicly highlighted how technology + fast reporting + bank coordination has led to:

1. Large-scale account freezes

2. Prevention of repeat fraud

3. Recovery of significant fraud proceeds

This model is now being replicated across states.

Is Cyber Fraud a Cognizable Offence?

Yes — And This Is Important

Under Indian law:

1. Cyber fraud is a cognizable offence

2. Police can act without court permission

3. FIR / e-FIR registration is your legal right

4. Jurisdiction is not a barrier for online crimes

You cannot be refused a cybercrime complaint simply because:

1. The scammer is in another state

2. The fraud happened online

3. The amount is “small”

What Happens After Filing the Complaint?

Investigation Process

After registration:

1. Cyber police examine evidence

2. Banks share transaction trails

3. Technical data is analyzed

4. Suspect accounts remain frozen

If required, police may:

1. Convert the complaint into a formal FIR

2. Summon banks or intermediaries

3. Seek further documents from you

Should You Visit the Police Station?

Usually not required initially. You may be called later for:

1. Statement recording

2. Document verification

Common Mistakes Victims Should Avoid

1. Waiting too long to report

2. Assuming small amounts are “gone forever”

3. Falling for “recovery agents” or fake helpers

4. Deleting chats or transaction messages

5. Paying anyone claiming to “get your money back”

There is no private shortcut to recovery — only official channels work.

Prevention: How to Protect Yourself from Cyber Scams

Golden Safety Rules

1. Never share OTPs, PINs, CVV

2. Don’t click unknown links

3. Verify caller identity independently

4. Use official apps only

5. Regularly review bank statements

Stay Informed

Cybercrime evolves rapidly. Awareness is your strongest defense.

Final Checklist: What To Do If You’re Scammed

1. Call 1930 immediately

2. File e-FIR on cybercrime.gov.in

3. Inform your bank or wallet provider

4. Preserve all evidence

5. Follow up using your Complaint ID

Conclusion: Act Fast, Act Smart, Act Lawfully

Cybercrime thrives on panic, delay, and silence. Indian cybercrime systems now allow any citizen to report instantly, digitally, and securely.

As repeatedly emphasized by senior cyber police officials like Yashasvi Yadav, timely action can stop scammers in their tracks.

If you ever face a cyber fraud:
Don’t panic. Don’t delay. Report immediately.

Your speed could save not just your money — but others too.

People Also Read: How To Report Cyber Blackmailing In India

What Is Doxxing?

Doxxing is the act of collecting and publicly posting someone’s sensitive personal information, such as:

1. Full name

2. Residential address

3. Contact numbers

4. Email ID

5. Financial details (bank account, Aadhaar, PAN)

6. Employer/workplace

7. Photos, videos, or private chats

Unlike hacking, doxxing usually doesn’t involve breaking into a computer. Instead, perpetrators use public databases, social media, or data breaches to collect and publish sensitive information—often to threaten, harass, or silence victims.

People Also Read: Cyber Bullying Law Everything You Need To Know

Why Do People Doxx Others?

People engage in doxxing for various reasons, many of which are malicious. Here are the most common motivations:

1. Revenge: After personal disputes or breakups.

2. Cyberbullying: To humiliate or intimidate the victim.

3. Political/ideological disagreements: Often targeting activists, whistleblowers, or journalists.

4. Trolling: For amusement or group vendettas.

5. Misinformation or mistaken identity: Where innocent people are wrongly targeted.

Regardless of the motive, the harm inflicted is often severe and lasting.

People Also Read: Can Facebook Post Or Tweet Attract Criminal Liability

The Harm Caused by Doxxing

Doxxing can lead to both emotional trauma and real-world consequences, such as:

1. Threats or harassment (via phone, email, or in-person)

2. Loss of employment

3. Physical stalking or assault

4. Mental health damage: anxiety, depression, PTSD

5. Identity theft or financial fraud

6. Damage to personal and professional reputation

Because of these severe outcomes, victims often turn to the law for protection and redress.

Is Doxxing Illegal in India?

India does not yet have a standalone law criminalizing “doxxing” by name. However, several legal provisions under Indian law can apply:

1. Information Technology Act, 2000

• Section 66E: Punishes violation of privacy by capturing, publishing, or transmitting images of a private area.

• Section 67: Deals with publishing or transmitting obscene material online.

• Section 72: Covers the breach of confidentiality and privacy by intermediaries or platforms.

2. Indian Penal Code (IPC)

• Section 354D: Stalking, including online stalking.

• Section 499 & 500: Defamation (civil and criminal).

• Section 503: Criminal intimidation.

• Section 507: Anonymous criminal intimidation.

• Section 509: Words, gestures, or acts intended to insult modesty.

3. Right to Privacy

The Supreme Court of India’s 2017 judgment in Justice K.S. Puttaswamy vs. Union of India affirmed the right to privacy as a fundamental right under Article 21 of the Constitution.

Hence, doxxing that violates someone’s privacy can be a constitutional violation as well.

Can You Sue Someone for Doxxing?

Yes, victims can file a civil lawsuit for damages and injunctive relief. Here’s how:

A. Civil vs. Criminal Action

• Criminal action: File a police FIR under IPC and IT Act sections. Punishment includes jail, fines.

• Civil lawsuit: Sue for damages (monetary compensation), restraining orders (injunction), and removal of content.

Requirements to Sue for Doxxing

To succeed in a civil lawsuit, you’ll generally need to prove the following:

1. Proof of Harm

You must show that the doxxing caused one or more of the following:

1. Mental trauma (supported by medical/psychological reports)

2. Financial losses (identity theft, job loss)

3. Physical danger (threats, stalking)

4. Reputation damage

2. Identification of the Doxxer

This is often the hardest part, especially if they used anonymous usernames or VPNs. But you can:

1. File complaints to platforms for IP disclosure.

2. Seek court orders/subpoenas to compel disclosure from ISPs or social media.

3. Evidence of Doxxing

Collect:

1. Screenshots of doxxed content

2. Links to websites or posts

3. Date and time stamps

4. Threatening messages, comments, emails

5. Witness accounts (if available)

The stronger your documentation, the more persuasive your claim in court.

How to File a Civil Lawsuit for Doxxing in India

Here’s a step-by-step guide:

Step 1: Report the Incident

1. Report to the cybercrime cell at https://cybercrime.gov.in

2. Report to the website or social media platform (Facebook, X, Reddit, etc.)

3. Request takedown/removal

Step 2: File a Police Complaint (FIR)

Visit your local police station or cyber police station and file an FIR under relevant sections (IPC + IT Act). Provide:

1. Evidence of doxxing

2. Screenshots

3. Your identity proof

Step 3: Consult a Cyber Law Expert

A lawyer specializing in internet law or data privacy can:

• Evaluate your case

1. Draft legal notices

2. Send cease-and-desist letters

3. File suit in civil court

Step 4: File the Lawsuit in Civil Court

Your lawyer will file:

1. Civil suit for damages and injunction

2. Application for interim relief: urgent orders to stop further spread of data

You can file in the District Court or High Court, depending on the jurisdiction and relief sought.

People Also Read: What Is the Punishment for Cyberbullying in India?

What Compensation Can You Claim?

A successful lawsuit may grant:

1. Compensatory Damages

1. Medical expenses (if caused stress-related illness)

2. Job loss or loss of income

3. Psychological treatment costs

2. Punitive Damages

To punish the offender and serve as a warning to others.

3. Injunctions

1. Court order to delete/remove published data

2. Stop the doxxer from repeating the act

4. Restitution of Reputation

1. Apology or public clarification by the offender

2. Deletion of defamatory material

What If the Doxxer Is Anonymous?

Even if you don’t know who doxxed you:

1. Your lawyer can issue notices to websites and social media platforms under IT Rules, 2021, seeking user data.

2. Platforms must respond within a defined period (usually 36 hours).

3. You can get court orders for discovery of identity via IP address.

Other Legal Issues Related to Doxxing

1. Defamation

If the doxxed content includes false or defamatory statements, you can file for:

• Civil Defamation: damages

• Criminal Defamation: IPC Section 500 (punishable with imprisonment)

2. Invasion of Privacy

Publishing private facts without consent—even if true—is legally actionable.

3. Cyberbullying/Harassment

Repeated targeting through messages, emails, or public posts may also constitute harassment under IPC and IT laws.

4. Identity Theft or Fraud

If personal details are used to impersonate you for fraud or transactions, Section 66C of the IT Act applies.

How to Protect Yourself from Doxxing

1. Lock Down Privacy Settings

Make all social media accounts private. Avoid posting sensitive information online.

2. Use Strong Passwords & 2FA

Use a password manager and enable two-factor authentication on all platforms.

3. Monitor Your Digital Footprint

Regularly search your name and email address on search engines to check for exposure.

4. Use a VPN

Mask your IP address while browsing to reduce traceability.

5. Opt-Out of Data Broker Sites

Use services like DeleteMe or Incogni to remove your data from data collection sites.

What If You’ve Been Doxxed But Don’t Want to Sue?

Not everyone wants to go through litigation. Here are some alternative steps:

A. Takedown Requests

File takedown requests with search engines (Google’s “Right to be Forgotten” form) or directly with platforms.

B. Law Enforcement Involvement

In case of threats or stalking, report to local police or cyber cell.

C. Seek Counseling

Doxxing can trigger trauma. Consult a licensed mental health professional.

D. Digital Hygiene

Update privacy settings and use digital safety tools (like email aliasing or secure messaging apps).

International Perspectives: Is Doxxing Illegal Elsewhere?

• United States: No uniform federal law, but state laws (California, Texas) and stalking laws apply.

• UK: Covered under Malicious Communications Act and Data Protection laws.

• European Union: Violates GDPR due to non-consensual data processing.

• Canada: Covered under Criminal Code, especially sections dealing with harassment and identity theft.

India may benefit from a clear, standalone law targeting doxxing, as seen in other jurisdictions.

Final Thoughts

Doxxing is not just an online nuisance—it’s a serious threat to your safety, dignity, and mental well-being. Fortunately, the law does offer ways to fight back.

Filing a civil lawsuit can help victims seek justice, recover damages, and stop the spread of harmful information. While the process may be complex, a knowledgeable lawyer and proper documentation can greatly improve your chances of success.

Your privacy matters. Take it seriously—and don’t hesitate to assert your rights if violated.

People Also Read: How To Report Cyber Blackmailing In India

Legal Provisions Against Cyberbullying in India

The Information Technology (IT) Act, 2000

The IT Act is India's primary legislation for cybercrimes. Several key sections can be invoked in cases of cyberbullying:

Section 66C – Identity Theft

Using someone else's digital identity (e.g., password, signature, photos) without permission.

Punishment: Imprisonment up to 3 years and/or fine up to ₹1 lakh.

Section 66D – Cheating by Personation

Creating a fake online identity or profile to cheat, harass, or defame.

Punishment: Imprisonment up to 3 years and fine up to ₹1 lakh.

Section 66E – Violation of Privacy

Taking or sharing private images/videos without the subject’s consent.

Punishment: Imprisonment up to 3 years or fine up to ₹2 lakh, or both.

Section 67 – Publishing Obscene Material

Sharing obscene, sexually explicit, or vulgar content online.

First Offense: 3 years jail + ₹5 lakh fine
Repeat Offense: 5 years jail + ₹10 lakh fine

Section 67A – Publishing Sexually Explicit Content

Covers explicit sexual content like pornographic videos or revenge porn.

First Offense: Up to 5 years jail + ₹10 lakh fine
Repeat Offense: Up to 7 years jail + ₹10 lakh fine

Section 67B – Child Pornography

Creating or sharing material involving children in sexually explicit acts.

Punishment: Up to 5 years jail and ₹10 lakh fine (first offense), harsher for repeat offenders.

Indian Penal Code (IPC), 1860

Several provisions in the IPC are also applied in cyberbullying cases, especially those targeting women or children.

Section 354C – Voyeurism

Watching, capturing, or sharing a woman’s private activities without consent.

First Offense: 1–3 years jail + fine
Repeat Offense: 3–7 years jail + fine

Section 354D – Stalking

Repeatedly contacting or tracking a woman online despite her objection.

First Offense: Up to 3 years jail + fine
Repeat Offense: Up to 5 years jail + fine

Section 499 & 500 – Defamation

Spreading false statements that harm someone’s reputation.

Punishment: Up to 2 years jail or fine, or both.

Section 507 – Criminal Intimidation via Anonymous Communication

Threats or abusive messages sent anonymously or using a fake identity.

Punishment: Up to 2 years imprisonment.

Section 509 – Insulting the Modesty of a Woman

Using words, gestures, or messages to insult a woman’s dignity.

Punishment: Up to 3 years jail + fine.

Section 66A of IT Act: Why Was It Removed?

Section 66A of the IT Act was originally created to penalize people for sending “offensive messages” electronically. But in the 2015 landmark case Shreya Singhal vs. Union of India, the Supreme Court struck it down, calling it vague and unconstitutional, violating the freedom of speech under Article 19(1)(a).

Even though it was scrapped, other IT Act and IPC provisions still exist to handle cases of online abuse, harassment, and bullying.

Notable Cases of Cyberbullying in India

State of West Bengal vs. Animesh Boxi (2018)

A man hacked his ex-girlfriend’s phone and posted intimate pictures online. The court convicted him under Section 354D IPC and the relevant sections of the IT Act, calling it “virtual rape.”
Significance: First Indian case to treat cybercrime as a sexual offence.

Snapdeal Model Case (2020)

A model complained of cyberstalking and threats received via social media. The accused was booked under Sections 354D and 507 IPC and 66D of the IT Act.

Online Harassment of Women Journalists

Several women journalists filed FIRs against online trolls who abused them on Twitter. Legal action was taken under IPC and IT Act sections related to defamation, obscenity, and criminal intimidation.

People Also Read: Cyber Bullying Law Everything You Need To Know

Legal Remedies for Victims of Cyberbullying

If you or someone you know is a victim of cyberbullying, here’s what you can do:

Step 1: Collect Evidence

1. Take screenshots of abusive messages or posts

2. Note down usernames, URLs, and timestamps

3. Download any offensive content being circulated

Step 2: Report to Cybercrime Portal

1. Visit the Government of India’s Cyber Crime Reporting Portal: https://cybercrime.gov.in

2. You can report anonymously or with full details

3. Select “Women/Child Related Crime” if applicable

Step 3: File an FIR

1. Approach your nearest police station or cyber cell

2. Under Section 154 of CrPC, police must file an FIR for cognizable offenses

3. You can also mail a written complaint to the cybercrime unit of your city

Step 4: Contact Platform Support

1. Report the incident on platforms like Facebook, Instagram, X (Twitter), etc.

2. Use their report abuse features to block the bully and remove content

Exceptions and Content Exempted Under Law

Some provisions of the IT Act include exemptions:

1. Content created for scientific, artistic, or literary purposes may be exempt

2. Religious or cultural content shared in good faith may not be punishable

3. However, these exceptions do not apply to content involving revenge porn, defamation, or child abuse

The Need for a Separate Cyberbullying Law

Although India has many sections across the IT Act and IPC that address cyberbullying, there is no comprehensive law specifically named after cyberbullying. Legal experts and child rights activists continue to push for a dedicated Cyberbullying Law.

Key Suggestions:

1. Define cyberbullying clearly as a crime

2. Set up fast-track online harassment courts

3. Mandate online safety education in schools

4. Stronger laws to prevent fake accounts and anonymity abuse

Government and NGO Initiatives

Ministry of Women and Child Development (MWCD)

Launched helplines and portals for children and women facing online harassment.

Cyber Dost

A Twitter handle run by the Ministry of Home Affairs that shares tips on cyber safety and updates on cybercrime reporting.

Childline 1098

Emergency helpline for children, where online abuse can also be reported.

Prevention Tips for Internet Users

1. Use strong passwords and change them regularly

2. Do not share personal information publicly

3. Block and report online abusers immediately

4. Enable privacy settings on social media

5. Talk to a trusted adult, teacher, or friend if you're feeling unsafe

Also Read: Can Facebook Post Or Tweet Attract Criminal Liability

Conclusion

Cyberbullying is a serious digital offense that can cause long-lasting harm to victims. Although India does not have a specific “Cyberbullying Act,” existing laws under the IT Act, 2000 and the IPC, 1860 offer significant protection.

However, with growing internet penetration and increased exposure of children, teens, and women to online threats, the need for dedicated, targeted legislation is urgent.

Until then, legal awareness, online vigilance, and timely reporting are the best tools we have to combat cyberbullying and ensure justice for victims.