1. The Golden Rule: Reverse PIN Logic
This is the most common reason people lose money on OLX and Facebook Marketplace.
🔑 The Rule
PIN is ONLY for Sending Money.
NO PIN is needed to Receive Money.
If someone says "Enter PIN to receive prize/payment", it is 100% a scam.
2. The "Burner Account" Strategy
Do not link your Salary Account or Life Savings Account to PhonePe/GPay for buying tea and vegetables.
Pro Tip: Use a Secondary Account
Open a zero-balance account (like SBI, Kotak 811, or PayTM Bank). Keep only ₹2,000 - ₹5,000 in it. Link ONLY this account to your UPI apps. Even if you get hacked or scammed, your main salary account remains untouched.
3. Set Transaction Limits
Most apps allow you to set a daily limit. If you rarely spend more than ₹5,000 a day, why keep the limit at ₹1 Lakh?
- Go to your Bank App (Net Banking).
- Find "Card/UPI Limits".
- Set UPI Daily Limit to ₹5,000 or ₹10,000.
- This acts as a "Circuit Breaker" if a thief gets access to your phone.
4. Don't Ignore the "Spam" Tab
Scammers send "Collect Requests" hoping you will click "Pay" by mistake. Regular UPI apps put these in a "Spam" or "Request" folder. Check this folder periodically and Decline and Block these IDs. Do not just leave them pending.
5. The QR Code Sticker Scam
When paying at a shop, look closely at the QR code stand. Scammers often paste their own QR code sticker over the shopkeeper's original code.
The Fix: Always ask the shopkeeper to confirm the name displayed on your phone before you enter your PIN.
6. App Lock vs. Screen Lock
Many people use the same Pattern Lock for their phone screen and their GPay/PhonePe. This is dangerous. If someone sees your screen unlock pattern, they can open your payment apps too.
The Fix: Enable Biometric (Fingerprint/FaceID) specifically for payment apps. It is much harder to bypass than a pattern.
7. Public Wi-Fi Danger
Never do heavy banking transactions on Railway Station or Coffee Shop Wi-Fi. Hackers can intercept data on public networks (Man-in-the-Middle attack). Use your mobile data (4G/5G) for payments; it is encrypted and safer.
8. Screen Sharing Apps
Never install apps like AnyDesk, TeamViewer, or RustDesk while talking to a "Customer Care" executive. These apps allow them to see your screen and steal your OTPs.
9. The "Test Transaction" Habit
Sending ₹10,000 to a friend or landlord for the first time?
Rule: Send ₹1 First
Always send ₹1 first. Call the person and confirm they received it. Only then send the remaining amount. This prevents money from going to the wrong number due to a typo.
10. Know the Dispute Mechanism (ODR)
If a transaction fails or money is debited but not credited, don't panic and search for "GPay Customer Care Number" on Google (scammers post fake numbers there).
The Correct Way:
- Go to the App -> Transaction History -> Raise Dispute.
- If not resolved, visit the NPCI Website (npci.org.in) -> "Get in Touch" -> "UPI Complaint". This is the official ODR (Online Dispute Resolution) mechanism.