How cyber attacks can derail digital payments systems


Financial Express
Reuters March 26, 2018

The Indian banking and financial services sector has seen its digital infrastructure expanding exponentially in recent years. Digital services such as Pradhan Mantri Jan Dhan Yogna, Inter-bank ATM transactions through National Finance Switch (NFS), Immediate Payment Service (IMPS), etc., have brought banking to the customer’s doorstep like never before. At the same time, cyber threats are also increasing and the nascent ecosystem is already facing sophisticated cyber attacks. For instance, a Rs 25 crore heist at a bank recently was traced to a bug in a digital payment application that allowed pilfering small amounts from multiple accounts. Again, a mobile wallet company suffered a loss of Rs 19 crore due to vulnerabilities in its own online payment system. These incidents require stakeholders to gear up, prepare and collaborate to provide secure and reliable prepaid payment instruments to end-consumers.
It was in this backdrop that Data Security Council of India (DSCI) and PayPal jointly launched a report titled ‘Securing India’s Digital Payment Frontiers’. The key objective of this study was to analyse India’s journey in digital payments and its cyber securitydynamics, prevailing cyber threat landscape, policies, regulations, standards along with future trends and best practices at the enterprise level. The report suggested various recommendations to secure the digital payments modes. As per the report, companies need to establish and maintain an appropriate governance and cyber security risk management framework to address the risks related to their IT systems and processes. To protect the interests of the public, the government makes policies meant for assuring the data protection and privacy related to the information collected or processed by the service providers, while regulators like RBI set the framework to conduct the business.
The cyber security best practices to be followed will have to integrate the elements of corporate security, rules and regulations along with the other elements of physical security. Government agencies such as CERT-In called the report very timely and said it would help in making the security framework more robust and resilient. Appreciating the efforts taken by DSCI and PayPal, Gulshan Rai, National Cyber Security Coordinator, government of India said, “To secure digital payments we have to focus on infrastructure as well as end-user tools. It is also important for service providers like Mastercard and Visa to step forward in this direction. The fintech sector in India will be under major attacks, the financial sector was under massive attacks last year and this year too. Hence, this report will help us to set the directions for the stakeholders.”
PayPal, which started its India operations last year, is looking to make the digital infrastructure for financial services more robust. Today, 85% of financial transactions are cash-based, and with the new government focused digital policies, there are untapped opportunities for PayPal and more players to explore in the Indian market. According to Edwin Aoki, global vice president, chief architect and technology fellow at PayPal, India has emerged as one of the fastest growing digital economies with a vision of becoming a cashless society. The cyber crime landscape is a rapidly evolving global threat, and the success of the industry requires investment in best practices, training and effective regulation. “With global expertise from our presence across 200 markets, we are geared up to help India secure the digital payments space,” he added.
Sanjay Bahl, director general, CERT-In said, “At CERT-In, 38 commercial banks are using our services. We are quite stretched with our resources for securing the financial services . One after another, we are carrying out mock drills, hands-on training on handling the new threats for banks. The fintech sector will always be under massive cyber attacks. We are investing in creating awarness around technology and process for banks and end-consumers.”


Comments

Post a Comment

Popular posts from this blog

India Joins Russia in Voting Against West-Backed Move to Expand Powers of OPCW

The Wire: June 28, 2018 New Delhi: India voted against a UK-backed move that will allow the global chemical weapons watchdog to apportion blame for illegal attacks, criticising the decision to grant “unchecked powers” to the head of the group which could be used for “partisan” purposes. On Wednesday, more than two-thirds of the member states of the Organisation for the Prohibition of Chemical Weapons (OPCW) voted to authorise the international body to identify the perpetrators and sponsors of a chemical weapons attack. It also specifically called on the OPCW’s technical secretariat to begin work on identifying the perpetrators behind the use of chemical weapons in Syria. The draft decision, sponsored by 30 countries, was adopted at the fourth special session of the conference of the states parties to the Chemical Weapons Convention at the Hague, with 82 in favour and 24 negative votes. While Europe, the United States and their allies voted ‘yes’, there was strong oppo...
Read more

As financial insecurity rises in urban India, so does investment in insurance

Image
Scroll.in March 13, 2020 Urban Indians are becoming less confident about their financial security. Up to 58% of them fret over financial independence post retirement, which is a 4% increase from last year. An equal share of urban Indians worry about meeting their daily medical expenses and sustaining their current lifestyle once they stop working. The findings are part of a survey published by Delhi-based Max Life Insurance in association with London-based consultancy Kantar. The firms surveyed 7,014 respondents in 25 cities, including six metros, nine tier-1 cities, and 10 tier-2 cities, between December 2019 and January 2020. Source: Max Life Insurance via Quartz The trends Source: Max Life Insurance via Quartz Source: Max Life Insurance via Quartz Source: Max Life Insurance via Quartz A significant share of urban Indians also say their families will have no financial support in the event of the breadwinner’s death. In such a scenario, around 57% believe the family sav...
Read more

ED tracks Swiss Bank A/Cs of Agusta scamster

The Poineer February 10,2019 Rakesh K Singh The Enforcement Directorate (ED) has tracked a dozen Swiss bank accounts in the name of Rajiv Saxena, who is key accused in the Rs 3,600 crore AgustaWestland VVIP chopper scam. The ED has also found out accounts held by  his family members and associates where the kickbacks in the now scrapped deal were allegedly parked. Two bank accounts are in the name of Rajiv Saxena’s  associates Pankaj Jain and Sumita Jain who are also the authorised signatories. The  third is in the name of another associate Ajit Singh Bubber, but Rajiv and his family members are authorised signatories. The remaining nine accounts are largely owned and operated by Rajiv, his family members and associates. Rajiv Saxena was deported by the UAE authorities on January 30 and the ED formally arrested him the next day and a court later granted his remand to the agency. He is currently undergoing custodial interrogation by the ED. The agency had in 2017...
Read more