India's Enforcement Directorate has filed charges against eight defendants in an alleged $20 million spoofing scam that targeted Coinbase users, marking one of the largest crypto fraud enforcement actions pursued by Indian authorities.
What Indian Authorities Are Alleging
The Enforcement Directorate (ED) filed a prosecution complaint against eight individuals accused of orchestrating a scheme that allegedly defrauded victims of approximately $20 million through fraudulent impersonation of Coinbase's platform and customer support channels. The charges are allegations; none of the defendants have been convicted.
The case is connected to Chirag Tomar, an Indian citizen who was previously sentenced to prison in the United States for his role in a Coinbase customer support phishing scheme. The ED's action now extends the investigation to alleged co-conspirators within India.
How the Alleged Spoofing Scheme Worked
The defendants are accused of creating spoofed websites designed to mimic Coinbase's legitimate login and support pages. Victims who landed on these fake sites were allegedly tricked into entering their account credentials, giving the operators access to their wallets and funds.
Once credentials were captured, the alleged scammers reportedly drained cryptocurrency holdings from victim accounts. The spoofing tactic relied on the trust users place in recognized exchange brands, a method that remains one of the most common vectors for crypto-related fraud targeting exchange users.
Coinbase itself is not accused of wrongdoing in the case. The exchange has previously acknowledged the scheme, noting that the scam spanned 1.7 million miles across multiple jurisdictions before law enforcement intervened.
Why the Charges Matter for Crypto Users
The ED's prosecution complaint signals that Indian authorities are willing to pursue complex cross-border crypto fraud cases. The $20 million scale of the alleged losses puts this among the more significant spoofing cases pursued by any national enforcement body.
Brand impersonation scams remain a persistent threat across the cryptocurrency industry. As institutional interest in digital assets grows and exchanges like Coinbase expand their global user base, the attack surface for phishing and spoofing operations widens in parallel.
For users, the case reinforces a basic security principle: always verify exchange URLs directly rather than clicking links from emails, messages, or search ads. As enforcement agencies across jurisdictions coordinate on cases like this, regulated financial institutions entering the crypto space may face increasing pressure to implement stronger anti-spoofing protections for their customers.
The case remains ongoing. Further details are expected as the prosecution moves through India's legal system.
Disclaimer: This article is for informational purposes only and does not constitute financial or investment advice. Cryptocurrency and digital asset markets carry significant risk. Always do your own research before making decisions.