CloudSEK Flags Large Illegal IPL Betting Ecosystem Powered by AI Deepfakes

A new cybersecurity investigation has revealed a highly organized illegal betting ecosystem targeting Indian Premier League (IPL) fans, leveraging artificial intelligence, deepfake videos, and compromised websites to run a large-scale digital fraud operation.

According to cybersecurity firm CloudSEK, the network has evolved far beyond traditional betting scams, operating as a coordinated criminal infrastructure built around cloned platforms, fake endorsements, and financial laundering systems.

Over 1,200 Domains Fueling Illegal Betting Operations

CloudSEK’s research identified more than 1,200 active domains promoting illegal IPL 2026 betting services. The firm described the system as a tightly integrated network rather than isolated scam websites.

Investigators reportedly gained access to an administrative control panel linked to one of the betting operations, revealing that a single backend system was being used to manage over 25 separate betting websites simultaneously.

The findings also exposed large-scale manipulation of user funds. Between May 2025 and May 2026, more than 9,300 withdrawal requests were allegedly denied within one network alone, resulting in estimated user losses of around ₹4.65 crore. These rejections were not technical errors but deliberate actions carried out by operators.

In addition, researchers discovered backend systems connected to multiple bank accounts registered under different business entities, which were allegedly used as “money mule” channels to move illicit funds and obscure the identities of those running the platforms.

AI Deepfakes and Hijacked Government Websites Used for Promotion

The investigation highlighted the growing use of AI-generated deepfake videos featuring Indian cricketers and social media influencers. These fabricated endorsements were widely circulated on platforms such as Instagram Reels and Telegram to attract users into betting groups and prediction channels.

CloudSEK also reported instances where attackers compromised legitimate Indian government websites, injecting malicious links that redirected visitors to illegal betting portals. This tactic exploited the trust associated with official domains and boosted search visibility for scam platforms.

The company noted that all relevant authorities and stakeholders were informed as part of its responsible disclosure process.

Expanding Cybercrime Network Beyond Betting Platforms

Beyond betting operations, the ecosystem reportedly includes supporting criminal services such as black-hat SEO campaigns, bulk SMS marketing, and aggressive lead-generation tactics designed to drive traffic and recruit users.

The report further warns of fake loan applications linked to the same network. These apps allegedly collect sensitive user data, including contacts, photos, and call logs, which are later used for intimidation and harassment when users are unable to repay or recover betting losses.

Cybersecurity researchers describe the entire system as a seasonal yet highly structured criminal industry that activates during major sporting events like the IPL, combining financial fraud, social engineering, and digital manipulation at scale.

A Growing Threat in Sports-Linked Cyber Fraud

Researchers involved in the investigation say the sophistication of these operations marks a significant escalation in cyber-enabled gambling fraud. The integration of AI-generated content, compromised infrastructure, and coordinated financial networks suggests a shift toward industrial-scale digital crime.

Experts warn that illegal IPL betting networks are no longer fragmented scams but increasingly resemble organized cybercrime enterprises designed to exploit mass audiences through advanced technology and psychological manipulation.