Consumer Trust & Fraud in Online Marketplaces: The Rising Threat and What Platforms Are & Should Be Doing

The rise of e-commerce in India has transformed how we shop—bringing convenience, choice, competitive pricing. But with that growth comes a serious risk: fraud, hacking, and erosion of consumer trust. Recently, a case in Pune highlighted how vulnerable online transactions remain, even in trusted marketplaces. In this piece, we review that incident, explore what India’s regulatory landscape is doing (and not doing), and suggest measures that marketplaces should adopt to better protect consumers—and their own credibility.

The Pune Credit-Card Fraud Case: A Wake-Up Call

• In early September 2025, Pune police detained three individuals (Aslam Mofid Khan, Adib Rizwan Khan, Farhan Ibrahim Unwala) who allegedly hacked credit cards and used them to buy high-end electronics via e-commerce websites. 
• The modus operandi involved sending spam messages with a link to a remote access software (an .apk file). Victims were tricked into entering their credit-card details into fake forms.
• One specific victim was an Indian Army soldier, who noticed that a phone worth about ₹1.1 lakh was ordered in his name.
• Police later recovered about 45 mobile phones worth around ₹12 lakh from the suspects. 

This case underscores several ongoing challenges: phishing and malware, fake forms, social engineering, misuse of trust, and weak verification at multiple stages—both user side and marketplace side.

Why Such Frauds Persist: Key Vulnerabilities

To understand what needs fixing, we need to examine where things tend to go wrong:

1. User side vulnerabilities
   
   • Users being tricked via links in messages (spam or phishing) to click and install malware or enter credentials.
     
   • Unfamiliar Android apps (.apk files) are especially risky outside trusted app stores.
     
   • Lack of awareness of subtle signals (fake forms, wrong URLs, unnatural workflows).
     
2. Gaps on the marketplace / platform side
   
   • Inadequate seller/seller agent verification, especially new or low-volume sellers.
   • Insufficient monitoring of anomalous transactions (very high value orders, shipping to addresses not consistent with user history, large orders of electronics or luxury goods).
   • Weak or non-existent checks on payment methods, or misuse of valid card data (stolen or compromised).
   • Poor collaboration with banks / payment gateways / law enforcement for fraud detection and redress.

3. Regulatory / legal & enforcement challenges
   
   • Laws are evolving, but enforcement lags.
     
   • Consumer awareness is low.
     
   • Some regulations are still in draft or proposed stages.
     
   • Cross-border payment or data issues complicate liability and jurisdiction.
     

India’s Regulatory Landscape: What’s Already in Place

India has taken several steps to address e-commerce fraud, consumer protection, and payment security. Some key instruments and developments:

• Consumer Protection (E-commerce) Rules, 2020
  These rules place obligations on marketplace entities to ensure transparency (seller details, product authenticity, etc.). Platforms must remove listings if notified of counterfeit or misleading goods.
  
• Draft Rules for E-commerce platforms (as reported recently)
  Some proposed rules include:
  • Mandatory KYC (Know Your Customer) for business partners (especially third-party sellers).
  • Detailed product listing requirements—title, seller contact, supporting media (images/videos).
  • Secure payment mechanisms: encryption, 2FA (two-factor authentication).
  
• RBI Regulation of Payment Aggregators
  RBI has tightened norms for payment aggregators (PAs), imposing stricter compliance, operational standards, capital norms, and cross-border transaction limits. The guidelines aim to improve transparency, consumer protection, and fraud mitigation.
  
• Cybercrime Monitoring / National Initiatives
  The Indian Cybercrime Coordination Centre (I4C) is working with platforms (e.g. Amazon) to raise awareness and mitigate fraud. 

What More Platforms & Marketplaces Should Do

While regulations set the minimum bar, platforms (marketplaces, payment gateways, seller-platforms) have both moral and business incentives to go beyond compliance. Here are concrete measures:

Stage	Action / Best Practice	Benefit / Impact
Pre-seller onboarding	Rigorous KYC for sellers, including identity proof, business/ GST documents, bank verification. Verify address, contact, possibly physical verification for high-value categories.	Reduces fraud from fake sellers; makes it easier to hold parties accountable.
Listing & product information	Require accurate and complete product descriptions; require real and/or verified media; seller contact info clearly visible. Use “verified seller” badges for trusted sellers.	Helps consumers judge legitimacy; reduces misleading/mis-advertised products.
Payment & transaction safety	• Use secure, encrypted payment channels.• Use 2FA / OTP / biometric / 3-D Secure for credit card / high value payments.• Fraud detection tools: anomaly detection, geo-location mismatches, velocity checks, device fingerprinting.• Avoid storage of sensitive payment data; compliance with PCI-DSS / relevant data laws.	Reduces risk of stolen card usage; detects fraud early; limits damage.
User education & UX design	Educate users about phishing links, unsafe apps, fake forms. Provide UI cues: flagged or verified sellers, warnings on suspicious flow, secure website indicators (https, domain).	Informed consumers less likely to fall for social engineering; lowers incidence of fraud.
Post-transaction monitoring & redressal	Monitor deliveries, track large orders, verify unusual shipping addresses; timely customer support & grievance redressal; easy refunds / replacements. Work with banks to rollback or flag suspicious payments.	Minimises loss; maintains trust; deters fraudsters when consequence exists.
Collaboration and transparency	Share fraud data / blacklists across platforms; cooperate with law enforcement; regularly publish “fraud incidents” and measures taken; audit systems (security / VAPT).	Builds consumer trust; industry-wide deterrence; regulators can see impact.

Implications for Consumer Trust & Business Viability

• Trust is fragile: Even a few high-profile frauds can damage not just one marketplace, but consumers’ willingness to buy electronics / high ticket items online.
• Competitive advantage in safety: Platforms that proactively demonstrate robust fraud prevention and customer protection will likely attract more users.
• Cost of fraud is high: Chargebacks, returns, monitoring, customer support, legal liability—these all eat into margins. Investing in prevention tends to be cheaper in long run.
• Regulatory risk: With laws tightening, non-compliance can lead to penalties, loss of license, reputational damage.

Conclusion

The Pune credit card hacking case is another reminder that online fraud isn’t a problem of the past—it’s evolving, adapting. Marketplaces, regulators, payment providers, and consumers all have roles to play:

• Regulators must continue refining rules, pushing for enforcement, closing loopholes.
• Platforms must not treat fraud prevention as a cost center but as essential infrastructure—sound seller verification, payment security, fraud detection.
• Consumers must stay alert, adopt safe practices, and demand transparency.

If platforms do more than just the minimum—build trust, communicate clearly, and protect consumers—then the growth of e-commerce can remain not just large, but safe and sustainable.