Panaji: Goa has recorded an increase in cyber fraud complaints in early 2026, even as authorities report improved financial recovery and a higher success rate in freezing stolen funds before they are withdrawn by scammers.

According to official cybercrime data, the state has seen a growing number of cases reported through the National Cyber Crime Reporting Portal and the 1930 helpline, reflecting both rising digital threats and increased public awareness.

Rising Complaints Linked to Greater Awareness

Between January and April 2026, Goa registered 1,354 cyber fraud complaints, compared to 1,100 cases during the same period in 2025. Police officials clarified that the rise in numbers does not necessarily indicate a surge in cybercrime activity, but rather improved awareness and easier reporting access for citizens.

Authorities credit awareness campaigns and improved reporting systems for encouraging more victims to come forward quickly after fraud incidents.

Improved Systems Help Reduce Financial Losses

Despite the increase in complaints, total financial losses have declined significantly. Victims reportedly lost around ₹28.43 crore in early 2025, while losses dropped to approximately ₹23.50 crore in the same period of 2026.

Officials say the improvement is largely due to faster response mechanisms and stronger coordination between Goa Police, banks, and national cybercrime monitoring systems.

A key factor has been the upgraded cloud-based 1930 Cyber Fraud Call Centre and the deployment of Goa Police personnel at the Indian Cyber Crime Coordination Centre in New Delhi, which has helped speed up transaction tracking and fund freezes.

Higher Recovery Through Faster Fund Freezing

Law enforcement data shows a marked improvement in the amount of money frozen or placed under lien during investigations. Between January and April 2026, authorities froze ₹4.99 crore, compared to ₹3.81 crore during the same period in 2025.

The lien-marking efficiency also improved from 13.40% to 21.23%, indicating stronger intervention during early stages of fraud cases.

Overall cyber fraud recovery efficiency in Goa now stands at 22.22%, placing the state among the better-performing regions in India for cybercrime response and financial recovery.

Faster Response Key to Preventing Losses

In 2025, Goa Police handled 4,812 cyber fraud complaints and recovered or secured liens worth ₹22.83 crore, achieving an overall recovery efficiency of 18.95%.

In just the first four months of 2026, authorities processed 1,808 complaints involving transactions worth ₹31.63 crore and successfully froze ₹7.03 crore through rapid intervention.

Officials emphasize that early reporting—especially within the “golden hour” after a fraud occurs—remains critical for increasing the chances of recovering stolen funds.

Experts Warn of Evolving Cyber Threats

Cybersecurity experts, including former IPS officer Prof. Triveni Singh, note that fraudsters are increasingly using sophisticated methods such as fake investment schemes, digital arrest scams, phishing links, and fraudulent KYC updates to deceive victims.

Authorities have urged citizens to remain cautious while engaging with unknown calls, messages, or online payment requests and to immediately report suspicious incidents through the 1930 helpline or official cybercrime reporting portals.

A new cybersecurity investigation has revealed a highly organized illegal betting ecosystem targeting Indian Premier League (IPL) fans, leveraging artificial intelligence, deepfake videos, and compromised websites to run a large-scale digital fraud operation.

According to cybersecurity firm CloudSEK, the network has evolved far beyond traditional betting scams, operating as a coordinated criminal infrastructure built around cloned platforms, fake endorsements, and financial laundering systems.

Over 1,200 Domains Fueling Illegal Betting Operations

CloudSEK’s research identified more than 1,200 active domains promoting illegal IPL 2026 betting services. The firm described the system as a tightly integrated network rather than isolated scam websites.

Investigators reportedly gained access to an administrative control panel linked to one of the betting operations, revealing that a single backend system was being used to manage over 25 separate betting websites simultaneously.

The findings also exposed large-scale manipulation of user funds. Between May 2025 and May 2026, more than 9,300 withdrawal requests were allegedly denied within one network alone, resulting in estimated user losses of around ₹4.65 crore. These rejections were not technical errors but deliberate actions carried out by operators.

In addition, researchers discovered backend systems connected to multiple bank accounts registered under different business entities, which were allegedly used as “money mule” channels to move illicit funds and obscure the identities of those running the platforms.

AI Deepfakes and Hijacked Government Websites Used for Promotion

The investigation highlighted the growing use of AI-generated deepfake videos featuring Indian cricketers and social media influencers. These fabricated endorsements were widely circulated on platforms such as Instagram Reels and Telegram to attract users into betting groups and prediction channels.

CloudSEK also reported instances where attackers compromised legitimate Indian government websites, injecting malicious links that redirected visitors to illegal betting portals. This tactic exploited the trust associated with official domains and boosted search visibility for scam platforms.

The company noted that all relevant authorities and stakeholders were informed as part of its responsible disclosure process.

Expanding Cybercrime Network Beyond Betting Platforms

Beyond betting operations, the ecosystem reportedly includes supporting criminal services such as black-hat SEO campaigns, bulk SMS marketing, and aggressive lead-generation tactics designed to drive traffic and recruit users.

The report further warns of fake loan applications linked to the same network. These apps allegedly collect sensitive user data, including contacts, photos, and call logs, which are later used for intimidation and harassment when users are unable to repay or recover betting losses.

Cybersecurity researchers describe the entire system as a seasonal yet highly structured criminal industry that activates during major sporting events like the IPL, combining financial fraud, social engineering, and digital manipulation at scale.

A Growing Threat in Sports-Linked Cyber Fraud

Researchers involved in the investigation say the sophistication of these operations marks a significant escalation in cyber-enabled gambling fraud. The integration of AI-generated content, compromised infrastructure, and coordinated financial networks suggests a shift toward industrial-scale digital crime.

Experts warn that illegal IPL betting networks are no longer fragmented scams but increasingly resemble organized cybercrime enterprises designed to exploit mass audiences through advanced technology and psychological manipulation.

Grafana Labs has confirmed a cybersecurity incident after a hacking group allegedly gained unauthorized access to company systems and claimed to have stolen internal data in an apparent extortion attempt.

The company disclosed that it is actively investigating the breach with the support of external cybersecurity and digital forensic specialists. Officials said immediate containment measures were deployed after the organization became aware of suspicious activity linked to the claims made by the attackers.

Hackers Allegedly Stole Internal Information

According to reports, the threat actors claimed they had extracted sensitive corporate information from Grafana’s internal infrastructure. The attackers reportedly attempted to pressure the company through extortion demands, threatening potential disclosure of the allegedly stolen data.

Grafana stated that its security teams quickly initiated incident response protocols after being alerted to the claims. The company has not yet confirmed the exact type or volume of data that may have been compromised.

External Cybersecurity Experts Brought In

The investigation is currently focused on determining the scale of the intrusion and identifying which systems may have been accessed during the breach. Third-party forensic investigators are analyzing system logs, authentication records, and network activity to assess the attackers’ movements inside the environment.

Company officials said the review remains ongoing and emphasized that monitoring efforts have been intensified to detect any further malicious activity.

No Evidence of Direct Impact on Customer Services

Grafana noted that there is presently no indication that customer-hosted environments or Grafana Cloud services were directly compromised in the incident. However, the company cautioned that the investigation is still in progress and findings could evolve as forensic analysis continues.

The company added that any affected customers or partners would be notified if investigators discover evidence that sensitive customer data or operational systems were exposed.

Rising Threat of Cyber Extortion Attacks

The incident reflects the growing wave of cyber extortion campaigns targeting technology companies, software providers, and cloud-based platforms worldwide. Cybercriminal groups increasingly rely on data theft and public leak threats to pressure organizations into negotiations or ransom payments.

Security experts warn that businesses are facing escalating threats from ransomware operations, credential theft attacks, and supply-chain intrusions aimed at enterprise infrastructure. The latest Grafana incident highlights the continued pressure on technology firms to strengthen cybersecurity defenses and incident response capabilities.

Industry analysts believe such attacks are likely to increase as hackers focus on high-value technology providers with access to large-scale enterprise systems and cloud services.