Ahmedabad: The Cybercrime police arrested four persons for allegedly masterminding an AI-enabled identity theft and banking fraud by tampering with Aadhaar-linked data and generating fake digital credentials, officials said on Tuesday.The case was registered on April 10 after a businessman from Thaltej approached the police, alleging that the mobile number linked to his Aadhaar had been changed without his consent, allowing unauthorized access to several digital platforms and banking services. Police identified the arrested accused as Kanu Parmar (32), a resident of Zakhaliya Pura near Bhathiji temple in Borsad; Ashish Valand (27), a resident of Bhayli Canal Road in Vadodara, originally from Kareli village in Jambusar, Bharuch; Mohammad Kaif Patel (26), a resident of Madina Park Society on Bharuch Road in Jambusar; and Deep Gupta (29), a resident of Nilkanth Park Society in Odhav, Ahmedabad. Officials said all four were detained from their respective homes. Investigations revealed that the accused operated through CSC centres and acted in coordination, with each member assigned a specific role. Parmar allegedly procured Aadhaar update kits, which were routed by Valand to Patel for carrying out unauthorized modifications. Gupta was allegedly responsible for sourcing and sharing victim data, including photographs, to enable fraud. Police said the accused illegally altered Aadhaar-linked mobile numbers using the kits and then exploited OTP authentication to access platforms such as DigiLocker and banking services. They also allegedly used AI-based tools to create facial “blink” videos from static images to circumvent biometric verification systems. Based on technical surveillance and human intelligence inputs, the police tracked down the accused and arrested them. All four have been sent to judicial custody, and further investigation is underway to trace additional victims and possible accomplices. Modus operandi• Procure victims’ Aadhaar data, mobile numbers and photographs through unauthorized access or data leaks • Use Aadhaar update (UCL) kits at CSC centres to illegally change registered mobile numbers • Activate OTP authentication on the new numbers controlled by the accused • Gain unauthorized access to platforms like DigiLocker and banking services • Generate AI-based “live” facial videos (eye-blink clips) from static photos to bypass biometric/KYC checks • Alter KYC details, including mobile numbers and email IDs, in digital records • Use compromised identities to attempt bank account openings and loan inquiries on fintech platforms • Operate in a coordinated network, each accused handling data sourcing, kit access, execution and AI manipulation
