Indian banks inadequately prepared for cyber attacks: Experts


New Delhi/Pune, Aug 14 (IANS): Cyber security experts on Tuesday questioned the preparedness of the Indian banks in case of a massive security breach involving funds, stressing that state-of-the-art security systems are the need of the hour.

Hackers siphoned off a whopping Rs 94.42 crore from the Pune-headquartered Cosmos Cooperative Bank Ltd -- the second oldest and second biggest cooperative bank in India -- to foreign and domestic bank accounts.

According to Nikhil Bedi, Partner, Deloitte India, robust security systems and incidence response capabilities are imperative for all companies and financial institutions that are custodians of customer data and customer assets, including funds.

"While there is growing awareness to regularly update an organisation's cyber preparedness and defence mechanisms, a large number of institutions wake up to this reality only post an incident which often leads to a loss of reputation and/or financial misappropriation," Bedi said in a statement.

In 2016, a malware-related security breach was reportedly detected in the non-SBI ATM network, following which the public sector lender blocked around six lakh debit cards.

An estimated 30 lakh-plus debit cards issued by various public or private banks were exposed to a potential risk of data breach.

Cyber attacks today are multi-pronged and can start with a malware being downloaded into a system or via a web application being hacked.

"This is a big challenge specially for banks, where it is no longer sufficient to protect just your data centres and your headquarters, you have to protect ATMs and branch offices in addition to securing incoming data even from affiliated organisations," cautioned Anshuman Singh, Senior Director, Product Management at Barracuda Networks Inc.

US-based Barracuda Networks is a leading provider of cloud-enabled security and data protection solutions.

In the case of Cosmos Bank, a proxy switch was created and all the fraudulent payment approvals were passed through the proxy switching system. Normally, the Core Banking System (CBS) receives debit card payment requests via its "Switching System".

According to bank officials, the malware attack was on the Switch System which is operative for the payment gateway of Visa/Rupay debit cards and not on the Cosmos Bank's CBS so the customers' accounts and their balances were not affected.

The banking, financial services and insurance (BFSI) domain remains most vulnerable to cyber threats.

"Regulators need to develop a risk management framework, including adequate threat response strategies and define the chain of command in case of a security breach," said Sanjay Katkar, Joint Managing Director and Chief Technology Officer at Pune-based Quick Heal Technologies Limited.

"Hiring chief information security officers must be made mandatory for players in the BFSI domain. The sector should also run regular security protocols and simulations to test their incident response capabilities," Katkar told IANS.

  

Top Stories

Comment on this article

  • Vincent Rodrigues, Bengaluru/Katapadi

    Wed, Aug 15 2018

    This do happen when you adopt any new systems forcibly without proper preparation and gazing thecapability

    DisAgree Agree [1] Reply Report Abuse

  • SMR, Karkala

    Wed, Aug 15 2018

    First there were attacks from 'Economic fraudsters' like Chota Modi, now from International hackers. I think one fine day new India will fill safe for their earnings like our ancestors did to keep them in earthen pot buried in earth.

    If bank with end to end encryption are not safe from hacking, how can our 'Adhar card' authority claim that it is full proof?

    In PM Modi India accept 'Gau Mata' nothing is safe.

    Jai Hind

    DisAgree Agree Reply Report Abuse

  • Rathan, Mangalore

    Tue, Aug 14 2018

    This problem of hackers is not confined to India. Large sums from different banks in western countries have been hacked in recent past. Indian banking industry should have checks and balances to prevent such hacking

    DisAgree [5] Agree Reply Report Abuse

  • nitin, kodagu

    Tue, Aug 14 2018

    when India is not secured enough to protect banking system. whey there was huge call for Digital India by present Govt.

    DisAgree [1] Agree [5] Reply Report Abuse

  • Jossey Saldanha, Mumbai

    Tue, Aug 14 2018

    Burn your Digital India ...

    DisAgree [2] Agree [8] Reply Report Abuse

  • geoffrey, hat hill

    Tue, Aug 14 2018

    Only a genuinely educated person at the helm of affairs can understand the importance of cyber security and make sure all the concerned institutions and agencies are in compliance with it, else fraudsters and hackers will CONTINUE to have a field day.

    DisAgree Agree [5] Reply Report Abuse

  • Swamy, Mangalore

    Tue, Aug 14 2018

    Why would anyone do cyber attack on Indian banks while there are easier, cost effective and blessed by the govt ways to Lalith Modi, Nirav Modi, Chowksi, Vjay Mallya, IDBI bank etc.

    DisAgree [2] Agree [4] Reply Report Abuse


Leave a Comment

Title: Indian banks inadequately prepared for cyber attacks: Experts



You have 2000 characters left.

Disclaimer:

Please write your correct name and email address. Kindly do not post any personal, abusive, defamatory, infringing, obscene, indecent, discriminatory or unlawful or similar comments. Daijiworld.com will not be responsible for any defamatory message posted under this article.

Please note that sending false messages to insult, defame, intimidate, mislead or deceive people or to intentionally cause public disorder is punishable under law. It is obligatory on Daijiworld to provide the IP address and other details of senders of such comments, to the authority concerned upon request.

Hence, sending offensive comments using daijiworld will be purely at your own risk, and in no way will Daijiworld.com be held responsible.