Malware Attack on ATMs Compromised Payment Cards Data in 2016

The commercial banks of India report that malware attack had compromised 2.9m payment cards swiped in ATMs which were plugged with a Hitachi switch. Santosh Kumar Gangwar, Minister of State for Finance informed this in writing when attending the Lok Sabha session. But according to him, the banks reported to RBI an estimated number of just 3,291 cards being compromised in the successful attacks. Businesstoday.in posted this, March 17, 2017.

As per Reserve Bank of India, HPS (Hitachi Payment Services) for a forensic investigation appointed SISA Information Security for Professional Certified Investigator. According to the ultimate report, said Gangwar, HPS' ATM infrastructure was hacked while data of 21st May-11th July of 2016 got compromised; however, the POS infrastructure was spared.

Gangwar added that the National Payment Corporation of India notified it conducted no investigation in its independence stature.

The apex bank, indicates Gangwar, established one Cyber Security and IT Examination (CSITE) unit during 2015 within the Department of Banking Supervision it operated. RBI had as well published one all-inclusive circular during June 2016 delineating best practices for safeguarding from cyber-crime in an improved way.

In spite of the vast initiatives from authorities globally, there are continuous deployment of malware by cyber-criminals in attempts to pilfer cash out of ATMs. Currently there are more than 4,32,000 automatic teller machines installed around the world that make it even riskier to use the machines.

The minister said that RBI issued an advisory for the commercial banks towards maintaining education and awareness of customers about cyber security dangers as well as for improving on it continuously.

Specifically, the CSITE cell as mentioned above by the RBI was formed at least two years back. Besides, RBI issued one complete circular in 2016 on the 2nd of June that included the most optimum practices to be adopted at commercial banks with respect to cyber security.

In the meantime, the RBI has advised banks for adopting the necessary steps for making consumer awareness better to combat cyber-security problems, while making consumers know the dangers as well as consequences associated with telling login details, they maintained, to others.

» SPAMfighter News - 3/22/2017