Ayushman Bharat Scheme Hit by Major Digital Fraud in Uttar Pradesh
In a significant breach of public trust and security, a suspected digital fraud has been uncovered within the Ayushman Bharat health insurance system in Uttar Pradesh. Irregular payments totaling a staggering Rs 9.94 crore were detected, prompting the filing of a First Information Report (FIR) at the cyber cell police station on Wednesday. This incident raises serious concerns about the integrity of government-funded healthcare initiatives.
Large-Scale Anomalies in Claim Payments
The State Agency for Comprehensive Health and Integrated Services (SACHIS), responsible for implementing the Ayushman Bharat Pradhan Mantri Jan Arogya Yojana (AB-PMJAY) and the Chief Minister Jan Arogya Abhiyan in the state, lodged a formal complaint after discovering extensive irregularities. These anomalies involved claim payments processed through the National Health Authority (NHA) portal, affecting 39 empaneled hospitals across Uttar Pradesh.
According to official sources, a detailed investigation revealed that as many as 6,239 claims linked to these hospitals were irregularly processed. This led to the suspected fraudulent disbursal of Rs 9.94 crore during a specific period from May 1 to May 22, 2025. The irregularities first came to light during routine financial scrutiny, where unusually high and disproportionate payments were flagged by auditors, indicating potential manipulation of the system.
Breach of Protocol and Security Concerns
Under the standard protocol of the Ayushman Bharat Scheme, hospitals are required to upload treatment claims on the NHA portal. These claims undergo a multi-step verification process:
- Initial verification by an Implementation Support Agency (ISA)
- Examination by SACHIS medical auditors
- Financial vetting and final approval through the CEO's login
- Direct bank transfer upon completion
However, in this case, officials confirmed that the disputed claims were neither processed nor recommended by the ISA. Furthermore, they were not authorized by the accounts officer or CEO through legitimate logins, pointing to a clear violation of established procedures.
Technical analysis conducted by cybersecurity experts revealed that multiple official user IDs were allegedly misused to facilitate these fraudulent transactions. Many of the suspicious activities occurred during late-night hours, raising alarms about potential credential hacking or internal compromise within the system. This pattern suggests a coordinated effort to exploit vulnerabilities in the digital infrastructure.
Impact and Response from Authorities
The scale of this fraud is particularly alarming given that Uttar Pradesh typically clears between 4,000 and 5,000 claims daily under the Ayushman Bharat Scheme. SACHIS has described the matter as a "serious case of digital fraud and embezzlement of government funds" and has called for stringent legal action under relevant penal and cyber laws to hold perpetrators accountable.
Deputy Commissioner of Police (Crime), Kamlesh Dixit, stated that the cyber cell will conduct a comprehensive forensic audit. This investigation will focus on server logs, IP addresses, and banking trails to identify those responsible for the breach. The goal is to trace the digital footprints and uncover the full extent of the fraud.
Additional Security Breaches Involving Aadhaar
In a related development, officials have also reported unauthorized changes to Aadhaar-linked mobile numbers of key personnel involved in the Ayushman Bharat Scheme. Over the past month, mobile numbers associated with the Aadhaar credentials of several officers and employees were altered without their knowledge or consent. These altered numbers were allegedly used to receive One-Time Passwords (OTPs) and gain unauthorized access to NHA-operated portals.
Authorities suspect that this manipulation was carried out either through unauthorized access to the Aadhaar authentication system or by using forged documents and fake identities. The issue gained prominence after Shivam Pathak, a representative from a Lucknow-based non-governmental organization, wrote to the state CEO, highlighting alleged irregularities in Ayushman card generation.
In response, SACHIS has informed the Unique Identification Authority of India (UIDAI) regional office in Gomtinagar and escalated the matter to UIDAI headquarters and the NHA. As a precautionary measure, suspicious IDs have been moved to a "suspicious bucket" to block further misuse, and IP address mapping has been initiated to trace unauthorized logins.
This incident underscores the critical need for enhanced cybersecurity measures in public health insurance systems to protect taxpayer funds and ensure the seamless delivery of healthcare services to beneficiaries.
