#FactCheck - Viral Video of Man ‘Running on Water’ Found to Be AI-Generated

‍Introduction

‍

The misinformation crisis has evolved from being merely an abstract risk to a clear-cut and measurable danger to individuals, families, institutions and the whole information ecosystem. The recent death hoax with the famous actor Dharmendra is a perfect illustration of how the monster of falsehoods rises, conquers the world and does damage before the mechanisms of correction have a chance to operate. The first week of November 2025 saw the first wave of reports from different social media accounts and even some online news outlets that claimed Dharmendra had died at the age of 89. The news travelled like wildfire, causing confusion, grief and emotional suffering in large circles of fans, one could say the whole world. But then, the family came to the scene with the loudest, clearest, and most conclusive denial of them all. This case is not a one-time event. It is part of a cycle of misinformation that goes through the stages from one unverified claim to the next due to the emotional value, the virality of platforms, and the accelerating online engagement.

‍

How One Wrong Post Can Create Worry and Fear

‍

This kind of false news spreads fast on social media because people share emotional posts without checking the source, and automated accounts often repeat the same claim which makes it look true. Such hoaxes create fear, sadness and stress for fans, and they place sudden pressure on the family who must deal with public worry at a time when they need calm and privacy. The message shared by Hema Malini who is the wife of the actor shows how hurtful and careless misinformation can be, and it reminds everyone that even one false post can create real emotional damage for many people.

‍

‍

Why This Hoax Spread So Quickly

‍

1. Sensationalism Drives Engagement: Rumours regarding the passing of a public figure, particularly someone who is universally loved, cause an immediate outburst of feelings. Such news is practically taken for granted by the online public, who are very likely to share it, most of the time without checking its authenticity, which, in turn, leads to viral spread. 
2. Very Fast Weaving-in on social media: Social media networks are very much made for swift sharing. Long before the official sources were able to either confirm or dismiss the matter, posts, reels, and messages ripped through the networks.
3. Digital Users Not Verifying Source: A large part of the audience depends on screenshots, forwards, and unverified posts for keeping up with the news. This opens a very nice environment for the spreading of hoaxes. 
4. Weak Verification Protocols: Although there have been measures to inform the public about misinformation, most news companies still give priority to the speed of reporting rather than its correctness, though not all the time, especially for the more entertaining and attractive topics like the health or death of famous people. 
5. Algorithmic Amplification Risks: The engagement is mainly driven by algorithms that bring to the surface the posts that evoke strong emotions. In a way, it is very unfair because the false or sensational claims are getting in front at the same time as the corrective updates, hence, the public is getting misled. In the absence of algorithmic safeguards, misinformation is on the rise and becoming stronger.

‍

Best Practices For Users: 

‍

• Make sure to verify before sharing, especially if the topic is about health or death. 
• Get updates by following official accounts rather than through sharing of viral forwards. 
• Be aware of the emotional manipulation tactics used in misleading information. 

Conclusion

‍

The rumour surrounding Dharmendra's death is yet another example that misinformation, whether promptly corrected or not, can still inflict distress, cause loss of trust and damage to reputation. It also emphasises the need for stronger information governance, responsible digital journalism, and platform intervention mechanisms as a matter of urgency. This incident, from clicks to consequences, points to a basic truth: misinformation in the digital age is quicker to spread than facts, and the responsibility of putting a stop to it falls on all the stakeholders’ platforms, media, and users.

‍

References

‍

• https://timesofindia.indiatimes.com/entertainment/hindi/bollywood/news/esha-deol-and-hema-malini-dismiss-dharmendras-fake-death-news-relieved-fans-pray-for-actors-speedy-recovery-aap-jld-se-jld-apne-ghar-aye/articleshow/125242843.cms
• https://www.altnews.in/media-misreport-bollywood-actor-dharmendra-hasnt-passed-away-yet/
• https://economictimes.indiatimes.com/news/india/dharmendra-death-news-bollywoods-veeru-and-he-man-passes-away-at-89/articleshow/125238900.cms

‍

Executive Summary:

This report deals with a recent cyberthreat that took the form of a fake message carrying a title of India Post which is one of the country’s top postal services. The scam alerts recipients to the failure of a delivery due to incomplete address information and requests that they click on a link (http://iydc[.]in/u/5c0c5939f) to confirm their address. Privacy of the victims is compromised as they are led through a deceitful process, thereby putting their data at risk and compromising their security. It is highly recommended that users exercise caution and should not click on suspicious hyperlinks or messages.

False Claim:

The fraudsters send an SMS stating the status of delivery of an India Mail package which could not be delivered due to incomplete address information. They provide a deadline of 12 hours for recipients to confirm their address by clicking on the given link (http://iydc[.]in/u/5c0c5939f). This misleading message seeks to fool people into disclosing personal information or compromising the security of their device. 

‍

‍

The Deceptive Journey:

• First Contact: The SMS is sent and is claimed to be from India Post, informs users that due to incomplete address information the package could not be delivered.

• Recipients are then expected to take action by clicking on the given link (http://iydc[.]in/u/5c0c5939f) to update the address. The message creates a panic within the recipient as they have only 12 hours to confirm their address on the suspicious link.

• Click the Link: Inquiring or worried recipients click on the link.

• User Data: When the link is clicked, it is suspected to  launch possible remote scripts in the background and collect personal information from users.

• Device Compromise: Occasionally, the website might also try to infect the device with malware or take advantage of security flaws.

The Analysis:

• Phishing Technique: The scam allures its victims with a phishing technique and poses itself as the India Post Team, telling the recipients to click on a suspicious link to confirm the address as the delivery package can’t be delivered due to incomplete address. 
• Fake Website Creation: Victims are redirected to a fraudulent website when they click on the link (http://iydc[.]in/u/5c0c5939f) to update their address.
• Background Scripts: Scripts performing malicious operations such as stealing the visitor information, distributing viruses are suspected to be running in the background. This script can make use of any vulnerability in the device/browser of the user to extract more info or harm the system security.
• Risk of Data Theft: This type of fraud has the potential to steal the data involved because it lures the victims into giving their personal details by creating fake urgency. The threat actors  can use it for various illegal purposes such as financial fraud, identity theft and other criminal purposes in future.
• Domain Analysis: The iydc.in domain was registered on the 5th of April, 2024, just a short time ago. Most of the fraud domains that are put up quickly and utilized in criminal activities are usually registered in a short time.
• Registrar: GoDaddy.com, LLC, a reputable registrar, through which  the domain is registered. 
• DNS: Chase.ns.cloudflare.com and delilah.ns.cloudflare.com are the name servers used by Cloudflare to manage domain name resolution. 
• Registrant: Apart from the fact that it is in Thailand, not much is known about the registrant probably because of using the privacy reduction plugins. 

• Domain Name: iydc.in
• Registry Domain ID: DB3669B210FB24236BF5CF33E4FEA57E9-IN
• Registrar URL: www.godaddy.com
• Registrar: GoDaddy.com, LLC
• Registrar IANA ID: 146
• Updated Date: 2024-04-10T02:37:06Z
• Creation Date: 2024-04-05T02:37:05Z (Registered in very recent time)
• Registry Expiry Date: 2025-04-05T02:37:05Z
• Registrant State/Province: errww
• Registrant Country: TH (Thailand)
• Name Server: delilah.ns.cloudflare.com
• Name Server: chase.ns.cloudflare.com

Note: Cybercriminals used Cloudflare technology to mask the actual IP address of the fraudulent website.

CyberPeace Advisory:

• Do not open the messages received from social platforms in which you think that such messages are suspicious or unsolicited. In the beginning, your own discretion can become your best weapon.
• Falling prey to such scams could compromise your entire system, potentially granting unauthorized access to your microphone, camera, text messages, contacts, pictures, videos, banking applications, and more. Keep your cyber world safe against any attacks.
• Never reveal sensitive data such as your login credentials and banking details to entities where you haven't validated as reliable ones.
• Before sharing any content or clicking on links within messages, always verify the legitimacy of the source. Protect not only yourself but also those in your digital circle.
• Verify the authenticity of alluring offers before taking any action.
  

Conclusion:

The India Post delivery scam is an example of fraudulent activity that uses the name of trusted postal services to trick people. The campaign is initiated by using deceptive texts and fake websites that will trick the recipients into giving out their personal information which can later be used for identity theft, financial losses or device security compromise. Technical analysis shows the sophisticated tactics used by fraudsters through various techniques such as phishing, data harvesting scripts and the creation of fraudulent domains with less registration history etc.  While encountering such messages, it's important to verify their authenticity from official sources and take proactive measures to protect both your personal information and devices from cyber threats. People can reduce the risk of falling for online scams by staying informed and following cybersecurity best practices.

‍

Introduction

After the tragic bomb blast at RedFort on November 10, 2025, there is a trail of misinformation and false narratives spread rapidly across social media platforms, messaging and news channels. It can not only unfold into a public misunderstanding but can also incite panic, communal tensions and endanger lives. To prevent all of these from happening, we, as responsible citizens, can play a critical role by verifying information before sharing it with friends, family, or colleagues. This article provides guidance on practical, evidence-based strategies to navigate the information landscape and protect yourself and your community from the harm caused by misinformation and disinformation.

‍

Digital Scams in the Aftermath of the Blast

Cybercriminals increased their activity in the hours after the Red Fort explosion, using the country’s sorrow as a chance to take advantage of fear.

Numerous allegations surfaced of residents receiving threatening calls that falsely claimed they were “digitally arrested” or that their phones, bank accounts, or Aadhaar were being “seized for investigation”, accusing them of being involved in the explosion. These fictitious intimidation calls sent innocent people into worry, anxiety, and doubt spirals.

The pattern is common after major national crises:

• Fear rises.
• People seek urgent answers.
• Cybercriminals exploit the confusion.

Knowing this makes it easier for us to remain watchful. No law enforcement organisation uses phone conversations, WhatsApp communications, or threats of “digital detention” to make arrests or conduct investigations. 

‍

Verify breaking news from trusted official channels

Whenever a crisis like bomb blasts occurs, people look for information on social media, news channels, and YouTube channels to stay fully informed about the situation. This is a very chaotic moment, and due to the lack of government verification of the initial information, false news spread rapidly.

‍

Where to seek verified information:

a. Press Information Bureau (PIB): The official government news agency that, from time to time, clarifies viral news.

b. Delhi Police Official Channels: Check social media handles of Delhi Police.

c.  Ministry of Home Affairs (MHA): MHA is responsible for internal security, and gives information about this information through official press releases and notifications.

d. Major Credible news outlets: Some news channels can be trusted with news, as they typically verify information before publishing, like The Hindu, Indian Express.

‍

What to do:

Cross-check every unverified social media post and news that you come across from credible news channels and official government press releases.

Verify Images and videos using reverse search tools

Recently, many social media handles have been sharing old photos of different bomb blasts from Ukraine, Israel, and Palestine in the name of the Red Fort blasts. While it can create a false narrative, the same should be verified before sharing.

Reliable fact-checking resources and how to use them.

Every country has dedicated fact-checking organisations that systematically verify viral claims.

‍

Fact-checking organisations based in India:

a. PIB Fact Check (https://factcheck.pib.gov.in/ )

·   It is the official fact-checking unit of the PIB, which focuses on demystifying government-related misinformation.

·   WhatsApp +918799711259 

·   email: socialmedia@pib.gov.in

·   Telegram: http://t.me/PIB_FactCheck

·   Follow it on: Twitter (@PIBFactCheck), Facebook, Instagram, Telegram and WhatsApp.

How to use these resources:

· Whenever you come across any viral post, use exact keywords or quotes to find those on these resources.

· Look for the verdict (true, false, misleading), then share the verified fact-checks with your network to debunk false narratives.

Practice Digital Hygiene and Be Cautious When Sharing

Digital hygiene refers to the practices and habits individuals adopt to maintain a healthy and secure digital lifestyle. Simple digital practices can restrict the spread of misinformation. A vigilant individual can reduce the spread of misinformation. It can be done by below steps

i.                 Check URLs and Links: We can verify the URLs and links of any news and websites using different tools to check the credibility of any news

ii.               How to Evaluate the Trustworthiness of Sources:

·   Verify if the account sharing the information has a blue checkmark on most platforms.

·   Examine the account's background, whether it is a recognised media source, an official government profile, or a newly created anonymous account?

·   Approach posts featuring intense emotional language ("URGENT!", "SHOCKING!", "MUST SHARE!") with scepticism.

·   Refrain from posting screenshots of tweets or posts while providing a link to the source, allowing others to confirm its validity.

iii.             Before You Distribute:

·   Question yourself: "Am I certain this is accurate based on a reliable source?"

·   Avoid the temptation to share breaking news immediately; hold off until it has been confirmed by government sources.

·   If you're uncertain, include a comment such as "I haven't confirmed this yet; please consult reliable sources" instead of sharing unverified information.

·   Reflect on the consequences, as it might lead to panic, provoke communal violence, or damage an individual's reputation

6. How to report misinformation to platforms and authorities?

While it is important to verify news before sharing it to prevent fake news, it is also important to report it to reduce misinformation and the violence caused due to it. On social media like Facebook, Instagram, Twitter/X, WhatsApp, and Telegram, anyone can report the same on the platform.

‍

Reporting to the Government Authorities:

a. PIB Fact Check WhatsApp (+91 8799711259):

Send Screenshots or texts of suspected government-related misinformation for verification, and then an automated acknowledgement is generated.

b. Delhi Police Cyber Crime Unit

Cyber Crimes such as Email Frauds, Social Media Crimes, Mobile App-related crimes, Business Email Compromise, Data Theft, Ransomware, Net Banking/ ATM Frauds and fake calls frauds, insurance frauds, lottery scam, bitcoin, cheating scams, online transactions frauds can be reported to the Delhi Police Cyber Crime Unit.

7. Quick checklist: What to do When You See Breaking News

·   Wait before sharing any breaking news.

·   Go through official channels like PIB and other official channels like MHA.

·   If not available there, then cross-reference it from 2-3 credible news sources for the same information.

·   Check timestamps and metadata, and compare metadata dates with claims about when events occurred.

·   In case you find any information, news or any social media posts as misleading, then report the same.

‍

CyberPeace Resolves: Pause. Reflect. Then Respond

‍

Misinformation becomes the infection that spreads the fastest when people are confused and afraid. Every citizen is urged by CyberPeace to remain composed, stand tall, and not panic, particularly in times of national emergency.

Prior to experiencing an emotional response to any concerning call, message, or widely shared news:

Pause. Reflect. Acknowledge.

•  Pause before sharing or responding.
• Reflect on whether the information is from a credible source.
• Acknowledge what you know—and what is just rumour.

CyberPeace is still dedicated to helping people and communities deal with online dangers, safeguard mental health, and dispel false information with clarity and truth.

‍