In FY24, India recorded 13.42 lakh UPI fraud cases resulting in losses of ₹1,087 crore, according to data shared in Parliament by the Finance Ministry. A significant share of these frauds targeting businesses involves a deceptively simple trick: a payment screenshot that never existed.
How the Fake Screenshot Scam Works
The typical sequence runs like this. A buyer contacts a seller, places an order, and negotiates a price. When it is time to pay, the buyer sends a screenshot via WhatsApp or email showing a successful UPI transfer. The screenshot shows the correct amount, the seller's UPI ID, and a plausible transaction reference number. The seller marks the order as paid and dispatches the goods. The payment never arrives.
By the time the seller checks their own UPI app or contacts the bank, the goods are gone. In September 2024, a gang defrauded Bajaj Electronics, a Hyderabad-based electronics retail chain, of ₹4 crore using coordinated UPI chargeback fraud across multiple showrooms. The modus operandi began with fabricated or manipulated payment evidence, followed by chargeback complaints after goods were received.
Why Screenshots Are So Easy to Fake
A screenshot carries no digital signature or cryptographic verification. Any image editing app on a smartphone can change the transaction amount, reference number, or recipient UPI ID in a few minutes. NPCI and the UPI payment apps do not provide a public API that third parties can use to instantly verify whether a specific transaction ID represents a completed payment.
This gap is what scammers exploit. A fabricated screenshot with a plausible UTR number and a "Payment Successful" message looks identical to a genuine one. NASSCOM and DSCI research found that fake digital identities compiled from genuine and fabricated information rose by 450% between 2022 and 2025, pointing to the wider infrastructure now available to fraudsters for creating convincing fake documents.
Red Flags to Check Before You Dispatch
Several markers can indicate a fraudulent screenshot. No single flag is definitive, which is why layered verification matters.
- Font inconsistency: In genuine UPI payment confirmations, all text uses the same typeface and weight. An edited screenshot often shows the transaction amount in a slightly different font, character spacing, or colour shade compared to surrounding text.
- UTR format: NPCI Unique Transaction Reference numbers follow a specific 12-character format beginning with the bank's two-letter code. A reference number that does not match this structure is a strong signal.
- Timestamp gaps: Genuine UPI transactions confirm within 2 to 10 seconds. A screenshot timestamped at an unusual time, or showing a different date format than the relevant app typically generates, should be questioned.
- Copy-pasted branding: Scammers often capture a genuine UPI success screen from a different transaction and edit the amount and recipient details. Checking for pixel-level compression inconsistencies around numbers or names can reveal editing.
- Mismatched app UI: Different UPI apps (PhonePe, GPay, Paytm, BHIM) have slightly different screen layouts and colour schemes. If the screenshot shows branding elements that do not match the buyer's claimed app, that is worth questioning.
What to Actually Do Before Dispatching
The only reliable check is to verify against your own payment records, not the screenshot provided by the buyer.
- Check your own UPI app: Open your bank app or UPI app and look for the incoming transaction directly. A payment not listed there has not been received, regardless of what any screenshot shows.
- UTR verification via net banking: Most major banks allow merchants to search for a credit transaction by UTR number through their net banking portal. This is the most reliable method for high-value orders.
- Merchant helpline confirmation: For orders above ₹10,000, calling your bank's merchant helpline and reading the UTR number to an agent takes two minutes and eliminates all screenshot-based fraud.
- Set a dispatch delay policy: For new or unverified buyers, dispatch goods only after the credit reflects in your bank statement, not at the point of receiving a screenshot.
Automated Detection for Businesses Handling Volume
For businesses processing dozens of incoming payments daily, manual verification of every screenshot is not practical.
Error Level Analysis (ELA) identifies parts of an image that have been digitally modified by examining compression-level differences across the image. In a genuine screenshot, compression is uniform. In an edited image, the modified area shows a distinctly different compression signature. ELA can detect subtle edits that the human eye misses entirely.
OCR-based amount extraction combined with cross-referencing known UPI ID formats allows automated tools to flag discrepancies in payment details without requiring a human to examine each screenshot individually.
ScamShield AI's Universal Scanner uses ELA, OCR, and metadata forensics to check payment screenshots submitted by your team and return a fraud verdict in under 3 seconds. For businesses where speed and accuracy of payment verification directly affect dispatch decisions, this kind of automated check reduces risk without slowing operations.
The Scale of the Problem
UPI fraud losses reached ₹485 crore in the first six months of FY25 alone, with 6.32 lakh incidents reported in that period. The National Cyber Crime Reporting Portal receives thousands of payment fraud complaints daily, and recovery rates remain below 6% of the stolen amount, per government data for April to September 2025.
For Indian businesses dealing in physical goods, payment verification is not optional. A single fraudulent dispatch can eliminate weeks of margin. A 30-second UTR check before dispatch costs nothing. For businesses handling volume, automated screenshot forensics reduce that check to a single click.