Indian banking System under Attack


There is a strong reason to believe that Indian banking is under systematic attack. The shit hole goes very deep and the problem is compounded by the fact that the media "tones" down its coverage (obviously to avoid panic). 

There are malware attacks (on ICICI which is siphoning of email contacts and sending its account holders phishing emails), Advanced persistent threats on Axis Bank (they disclosed this to RBI), ATM frauds as in State Bank of India and multiple accounts of phishing attacks on individuals. Union Bank has also suffered cyber heist.

A worrying trend is by use of SIM Swap. Fraudsters get your personal details (easily available through WhatsApp), your details through identity thefts and blocking your actual SIM's so that you cannot receive the SMS alerts.

Two factor authentication is very basic (dependent on passwords alone) which again can be easily retrieved because most users re-use their passwords.

It's getting scarier and worsened.

A simple remedy as of now is to change PIN of your existing debit card and get "CHIP and PIN" card which secures transaction because they cannot be replicated easily. Of course, moving away from WhatsApp is a sensible decision (use BBM/ Threema) so that your identity details through phone numbers is not compromised.

List is Sources confirming the attack:

2) Zdnet

I think it's objective proof enough. ICICI bank seems to have been affected with malware. Yes Bank, I think was also affected but I can't find the source.

The worst? National Payments Corporation of India being affected but they of course denied it. -Source

There is no concept of security audits; if it's there, it's useless. Basically, I feel its a bunch of monkeys sitting over out hard earned money and clueless on how things are getting worse. 

Post a Comment

Previous Post Next Post