How UP-based gang tampered Aadhaar biometrics, altered thousands of digital identities across 12 states

Meerut, Apr 8, 2025

A hi-tech identity fraud racket, operating from Uttar Pradesh, has been busted for allegedly tampering with biometric data of over 1,500 Aadhaar cardholders across 12 states. Police arrested four individuals who exploited loopholes in the UIDAI system, running a network of agents who collected documents for illegal updates.

UP police have uncovered a hi-tech identity fraud racket operating from Badaun and Amroha allegedly responsible for "tampering with biometric data of over 1,500 Aadhaar cardholders across 12 states". A joint cyber team, supervised by SP Sambhal Krishna Kumar Bishnoi and ASP Anukriti Sharma, busted the operation and arrested four "key players".

Bishnoi said that "four youths — Ashish Kumar, Dharmender Singh, and Raunak Pal -- from Badaun -- and Kasim Hussain from Amroha -- all in their 20s -- have been arrested for exploiting loopholes in the UIDAI (Unique Identification Authority of India) system and booked for cheating, identity theft, possession of counterfeit seals, and unauthorised access to protected systems under relevant sections of the Aadhaar Act, IT Act 2016, and Passport Act 1967."

The gang ran a meticulously organised network supported by 200 to 300 "retailers" spread across states like Uttar Pradesh, Madhya Pradesh, Andhra Pradesh, Tamil Nadu, Punjab, West Bengal and Delhi, the SP added. These "agents" acted as intermediaries, collecting documents from clients who wanted to illegally update details such as name, address, date of birth or mobile number on their Aadhaar cards. They used to charge between Rs 2,000 and Rs 5,000 for the work, cops said.

"Over 1,500 Aadhaar cards were found to have been tampered with, and at least 400 supporting documents which involved fraudulent changes to birth dates or mobile numbers. Investigators also uncovered attempts to manipulate ration card data, with names and addresses altered using the same forged biometric access," ASP Sharma said.

At the centre of the operation was Ashish Kumar, a BTech dropout who, as per the police, masterminded the gang's technical exploits. "Kumar developed counterfeit websites mimicking the official Aadhaar and Passport Seva portals, allowing retailers to input fraudulent data and generate fake documents, including passports. Access to these platforms was sold for a fee," Bishnoi said.

Once the data was filled in these "pseudo govt websites", the gang would exploit the UIDAI system for feeding the fraudulent information as genuine by purportedly cloning credentials of authorised Aadhaar operators — including sensitive biometrics like iris scans — and using advanced software to bypass the portal's geo-fencing restrictions. This allowed them to log in and upload tampered biometric data remotely, cops pointed out.

Co-accused Kasim Hussain allegedly played a key role in modifying fingerprint scanners to accept silicone-molded fingerprints in place of real ones. These fake prints were created using impressions sourced from real operators and unsuspecting individuals, many from economically-weaker sections.

"The scanners were manipulated to appear as if a legitimate operator was conducting the biometric scan," said ASP Sharma. "This allowed them to bypass Aadhaar's real-time biometric locks."

The network's forgery efforts went beyond Aadhaar. Police found the gang had also created fake birth certificates and ration cards to back Aadhaar changes. After Dec 2024, when stricter verification norms came into effect, the gang switched tactics, using forged documents on third-party portals to generate "over 20 fake passports, several of which were successfully uploaded to UIDAI for validation".

[The Times of India]