Background and Timeline: On March 24, 2026, the Directorate of Enforcement (ED) released a comprehensive status report under the PMLA framework. The audit details the investigation into 257 distinct cases of cyber-enabled financial crimes identified up to February 2026. This timeline represents the most significant federal effort to quantify the volume of illicit money flowing through the nation’s digital channels over the last fiscal year.

Modus Operandi: The suspects utilize high-velocity money laundering networks that interface with international cyber-syndicates. These networks operate by layering proceeds through a complex hierarchy of shell companies and thousands of individual “rented” mule accounts to effectively distance masterminds from the victim money trail. The ED observed that these syndicates use automated digital rotation to move funds into cryptocurrency or offshore accounts within seconds of a successful fraud strike.

Victims and Financial Impact: The total Proceeds of Crime (PoC) identified in these 257 cases reached a staggering ₹35,925.58 crore, marking it as a systemic threat to the national economy. The victims include thousands of retail digital payment users and corporate entities who fell prey to various phishing and investment scams. The impact is so vast that the ED has established a dedicated real-time data-sharing mechanism with State Law Enforcement Agencies via designated Nodal Officers.

Investigation and Agencies Involved: The Directorate of Enforcement led the investigation under the Prevention of Money Laundering Act (PMLA), 2002, collaborating extensively with the I4C and state police units. Agencies utilized Section 66(2) of the PMLA to share intelligence whenever contraventions involving other regulatory bodies, such as the RBI or SEBI, were discovered during the audit. The investigation also leveraged data from the new Cyber Fraud Mitigation Centre (CFMC) at the I4C.

Arrests and Suspects: While the report focuses on the identified proceeds, several hundred individuals linked to these 257 cases are currently under various stages of prosecution or trial across India. Many suspects are identified as professional “money mules” or “layering specialists” who provided the essential back-end infrastructure for international kingpins. The ED continues to pursue high-value domestic enablers who facilitated the movement of these funds into foreign digital assets.

Broader Implications and Trends: The identification of ₹35,925 crore in proceeds confirms that cybercrime has become a primary driver of the shadow economy in India. The data underscores the critical need for “ecosystem-wide disruption” that moves beyond individual arrests to target the financial architecture of syndicates. This trend indicates a shift toward treating cyber-financial crime as a major threat to national economic stability and security.