The recent Kerala cases have exposed a brutal pattern: small, fast digital loans can become instruments of coercion, humiliation, and, in the worst cases, tragedy. Chinese-language reporting from outlets like People’s Daily, Caixin, and Guancha details how Chinese criminals have run telecom fraud and loan scams in India since the COVID-19 lockdowns, amplifying the urgency of the recent Kerala spotlight.
The rise of predatory digital loan apps has created a new kind of debt trap: instant, frictionless, and often weaponised against the borrower. In India, the danger is not merely high interest or hidden charges; it is the combination of intrusive permissions, opaque ownership, offshore control, and recovery tactics that turn financial distress into psychological terror.
The recent death of Nithin Raj in the south Indian state of Kerala – linked to alleged discrimination and a loan he had taken out – has once again forced public attention onto this ecosystem. Public anger has widened into protests, a statewide hartal by Dalit-Adivasi groups, a move for anticipatory bail by the prime accused, and a Crime Branch probe. Whatever the final findings of the investigation, the case underlines a hard truth: when debt collection can reach into a borrower’s contacts, gallery, and social reputation, the app is no longer a neutral financial product. It is a mechanism of pressure.
The core problem with these apps is not simply that they lend money quickly. It is that many of them ask for excessive access to data — contacts, location, storage — and then use that information to shame, threaten, or blackmail borrowers and their families. Official investigations have described such practices as organised cybercrime, enabled through disposable emails, virtual numbers, mule accounts, shell companies, payment aggregators, API services via DingTalk, cloud hosting in Alibaba Cloud, and cryptocurrency through Binance, layers that obscure accountability.
Such a Chinese cybercriminal complexity makes India’s law enforcement difficult, especially when recovery operations are split across jurisdictions, often in Southeast Asia and other regions. These apps also exploit desperation. Their target users are often young people, informal workers, students, or households facing medical or other emergencies — borrowers who need money urgently and are unlikely to read the fine print Once trapped, borrowers face not only financial stress but reputational and emotional harm.
The broader pattern is visible in Chinese-language reportage and academic analysis. In China, Caixin exposed a digital loan-shark gang in Lanzhou, Gansu (Northwest China) using internet platforms that drove dozens to suicide, prompting tighter domestic regulations. People’s Daily reported India’s telecom fraud losses topping 110 billion rupees in early 2024, with stock scams and “digital arrests” surging post-COVID lockdowns.
Guancha.cn detailed “kill-foreigner scams” defrauding 66,800 Indians of 517 million rupees in seven months via fake identities and investment lures. Epoch Times Chinese editions covered Chinese groups shifting P2P loan fraud to India, arresting nationals running high-rate apps that harvested data via WhatsApp malware and shell firms. Academic work notes these tactics align with global cyber-fraud patterns, where Chinese syndicates exploit weak regulation abroad after domestic crackdowns. The Kerala incident now reignites scrutiny of this persistent threat.
The regulatory response must therefore be broader than after-the-fact policing. First, governments should require all digital lenders to prove clear licensing, domestic legal presence, and transparent beneficial ownership before operating in any market.
Second, app stores and payment intermediaries should be made jointly responsible for removing non-compliant lenders quickly, because distribution infrastructure is often the easiest point of intervention. Third, operating systems should restrict unnecessary access to contacts, files, and photos by default for loan apps, with any exception subject to explicit, time-bound, and auditable consent.
Governments should also criminalise coercive recovery practices more sharply and create fast-track complaint channels with real compensation and takedown powers. Borrowers need a simple way to report extortion, data misuse, and impersonation, and regulators should be able to freeze payment rails within hours, not months. The Reserve Bank of India’s consumer-protection framework is a start, but the issue now spans cybercrime, privacy, and cross-border enforcement, so central banks alone cannot handle it.
Internationally, governments should coordinate on a few non-negotiables: mutual legal assistance for digital lending crimes, standard disclosure rules, mandatory audit trails for loan disbursement and recovery, and cross-border bans on lenders that repeatedly violate data and consumer laws. Countries should also treat predatory lending apps as a public-interest cyber threat, not only a banking issue. In other words, stronger cooperation between finance ministries, telecom regulators, cybersecurity agencies, and platform companies is the need of the hour.
The larger lesson from Kerala is that predatory lending feeds on institutional weakness. Where consumer protection is slow, data rules are thin, and policing is fragmented, exploitative apps flourish. Where vulnerable borrowers are left alone with their phones, their contact lists, and their shame, the loan company acquires leverage far beyond the amount advanced.
Digital credit can still serve a public purpose. However, it must be built on transparency, consent, and enforceable accountability. Without that, the promise of quick finance becomes a private corridor to public harm.
Sun Lee is the pseudonym for a writer who covers Asia and geopolitical affairs