

CC @DCP_CCC_Delhi
My dad got an SMS (in all CAPITAL letters) that mentioned "your @Paytm wallet will be blocked unless you re-activate the KYC". It had a phone number to call to do the process.
Note: Sending all capitals and just a mobile number is the first odd thing!
Note: Sending all capitals and just a mobile number is the first odd thing!

When my dad called that number, they explained that you'll need to install an app, Teamviewer QuickSupport, to do the KYC process. My dad installed the app and gave screen-share access to them.
Then they said he'll need to do 2 transactions of amount 1-10Rs. in order to verify.
Then they said he'll need to do 2 transactions of amount 1-10Rs. in order to verify.
Also, they asked my dad to put in his password in a input field. Using a virtual keypad, my dad put his password which the frauds saw through TeamViewer screen share.
My dad did the first transaction using UPI of a bank account.
Note: My dad typed the UPI pin on his mobile virtual keypad, which the frauds saw too.
This is where I heard the conversation and jumped in.
Note: My dad typed the UPI pin on his mobile virtual keypad, which the frauds saw too.

This is where I heard the conversation and jumped in.
I immediately turned off TeamViewer. And asked them what is this new process of KYC? The fraud explained that now you don't need to be face-to-face and can do the KYC through phone. He also asked me to reconnect TeamViewer.
I told him to ask me whatever details he needs. But why need screenshare? He vaguely explained, "Sir, we need this app to verify your transactions and it doesn't capture any information from you"!!!
Over arguing more, he said I can talk to a senior person if I don't trust them.
Over arguing more, he said I can talk to a senior person if I don't trust them.
I asked the same question to his senior (fraud) person. He explained the same thing (in a more sophisticated manner). And then asked me "Sir, do you want to keep your wallet activated or not?".
All this while, I was changing my dad's payTM password & uninstalling TeamViewer.
All this while, I was changing my dad's payTM password & uninstalling TeamViewer.
I told him that let it be. I don't want to activate my account and dropped the call.
Immediately after, I stopped all UPI transactions on my dad's bank account. A few minutes later, my dad also received some login OTPs from payTM- meaning those frauds were trying to break in.
Immediately after, I stopped all UPI transactions on my dad's bank account. A few minutes later, my dad also received some login OTPs from payTM- meaning those frauds were trying to break in.
Later, I also read on @Paytm website (at the end of a page https://www.paytmbank.com/blog/2019/08/all-you-need-to-know-about-expiry-of-min-kyc/) that "beware of fraud calls that ask you to install apps like anyTime or TeamViewer" 
I wish it was communicated more prominently, in bold at the top the page and through other mediums.

I wish it was communicated more prominently, in bold at the top the page and through other mediums.

- Legitimate SMS won't give a mobile number to call back.
- The SMS won't ever be completely in CAPITAL LETTERS!
- DO NOT install apps like TeamViewer on being asked
- Never type your password where it's visible.
- Stay alert!