Key takeaways
– Impersonation scams often use low-tech methods like fake websites that closely mirror real crypto platforms.
– A 7.16 million rupee fraud complaint against CoinDCX escalated to arrests before being identified as an impersonation case.
– The counterfeit domain coindcx.pro, not the legitimate coindcx.com, was used to defraud the victim.
– Fraudsters created a supporting ecosystem—websites, Telegram channels and social accounts—to appear credible.
While crypto reporting usually focuses on market moves, smart contract flaws and policy shifts, some serious threats are surprisingly simple: a fraudulent website that perfectly mimics a reputable exchange can inflict major financial and reputational damage.
This CoinDCX incident began with a 7.16 million rupee (about $77,000) complaint and led to police action against the exchange’s leadership. Court intervention later clarified that the fraud originated from impersonators running a sophisticated fake setup, not from the exchange itself.
A fake CoinDCX, but a real complaint
A 42-year-old insurance consultant from Mumbra, Thane, filed a complaint claiming he was defrauded of roughly 7.16 million rupees after being offered investment opportunities he believed came from CoinDCX. The offer reportedly promised 10%–12% monthly returns and referenced a franchise-style model tied to the platform—details that leveraged the brand’s perceived legitimacy.
Instead of quickly being identified as an impersonation scam, the matter escalated and resulted in the arrest of CoinDCX co-founders Sumit Gupta and Neeraj Khandelwal.
The role of coindcx.pro
The victim had interacted with a counterfeit site, coindcx.pro, rather than the official coindcx.com. Such lookalike domains are a common impersonation tactic: they visually mimic a brand and exploit user trust.
CoinDCX has said no funds related to this case were processed through its exchange systems and that the scam was orchestrated by external actors using its name. Domain impersonators often use small visual tricks—substituting characters, adding extra words—to make fake sites hard to spot at a glance.
How fraudsters built a fake ecosystem
The impersonation extended beyond a single website. Scammers reportedly set up Telegram channels and social media profiles to back the illusion, creating a seamless experience for the victim: a website, community and representatives that all appeared linked to a known brand. Today’s fraud networks often assemble whole parallel ecosystems rather than relying on a single deceptive element.
How the case escalated
The FIR was filed at the Mumbra police station in Thane on March 16, 2026. During the investigation, CoinDCX’s co-founders were taken into custody in Bengaluru. This sequence illustrates a common difficulty: when victims name a well-known company, initial inquiries can move quickly and sometimes implicate legitimate parties before impersonation is established.
A Thane magistrate later granted bail to the co-founders, stating no prima facie case had been made against them. The court observed the complainant had been deceived by individuals impersonating the company’s promoters and that the complainant had no direct interaction with the co-founders.
A wider pattern of fake domains
This incident is part of a larger trend. CoinDCX reported more than 1,200 fake websites impersonating its platform between April 2024 and January 2026, signaling that impersonation is a scalable strategy for fraudsters. Creating such domains is relatively inexpensive, and combining them with messaging apps and social media lets fraud networks recreate trust at scale.
Why high monthly returns remain a key trigger
A central lure in this case was the promise of 10%–12% monthly returns. Claims of fixed, unusually high returns—often presented with urgency or exclusivity—are common in financial scams. Coupled with a recognized brand, these promises reduce skepticism and attract attention. Many impersonation scams reuse scripts and layouts across brands, enabling quick repurposing once a template works.
Legal and reputational fallout
Even when courts find no case against a company, impersonation incidents carry consequences:
– Temporary legal exposure
– Reputational damage
– Increased scrutiny from users and regulators
Users may panic when a trusted platform is mentioned in negative news, even if the company is not at fault. The episode also raises questions about how law enforcement distinguishes between genuine company involvement and brand misuse in fast-moving digital investigations.
CoinDCX’s response
In response, CoinDCX announced a 100 crore rupee (~$10.76 million) Digital Suraksha Network (DSN) aimed at fraud prevention and user awareness. Reported measures include an AI-driven WhatsApp helpline, APIs for sharing fraud-related data, and collaboration with law enforcement for training and better response. While not foolproof, these steps aim to strengthen proactive defenses and cross-industry coordination.
What users should take away
– Verify domains carefully; small differences can indicate fraud.
– Be skeptical of promises of fixed or unusually high monthly returns.
– Treat Telegram groups and social handles as unverified unless officially confirmed.
– Conduct transactions only through official platforms.
Often the difference between a legitimate service and a scam is not advanced technology but careful verification.