{"id":7975,"date":"2016-10-25T09:38:17","date_gmt":"2016-10-25T09:38:17","guid":{"rendered":"http:\/\/www.esds.co.in\/blog\/?p=7975"},"modified":"2021-06-25T12:50:43","modified_gmt":"2021-06-25T12:50:43","slug":"debit-card-security-breach-india","status":"publish","type":"post","link":"https:\/\/www.esds.co.in\/blog\/debit-card-security-breach-india\/","title":{"rendered":"What you should know about the Debit Card security breach in India?"},"content":{"rendered":"<h2 style=\"text-align: center;\"><span class=\"ez-toc-section\" id=\"Debit_Card_security\"><\/span>Debit Card security<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p><a href=\"https:\/\/www.esds.co.in\/blog\/wp-content\/uploads\/2016\/10\/atm-breach-2.png\" target=\"_blank\" rel=\"noopener noreferrer\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-12094 size-full\" src=\"https:\/\/www.esds.co.in\/blog\/wp-content\/uploads\/2016\/10\/atm-breach-2-1.png\" alt=\"\" width=\"1200\" height=\"628\" srcset=\"https:\/\/www.esds.co.in\/blog\/wp-content\/uploads\/2016\/10\/atm-breach-2-1.png 1200w, https:\/\/www.esds.co.in\/blog\/wp-content\/uploads\/2016\/10\/atm-breach-2-1-300x157.png 300w, https:\/\/www.esds.co.in\/blog\/wp-content\/uploads\/2016\/10\/atm-breach-2-1-1024x536.png 1024w, https:\/\/www.esds.co.in\/blog\/wp-content\/uploads\/2016\/10\/atm-breach-2-1-150x79.png 150w, https:\/\/www.esds.co.in\/blog\/wp-content\/uploads\/2016\/10\/atm-breach-2-1-660x345.png 660w, https:\/\/www.esds.co.in\/blog\/wp-content\/uploads\/2016\/10\/atm-breach-2-1-380x200.png 380w\" sizes=\"auto, (max-width: 1200px) 100vw, 1200px\" \/><\/a><\/p><div id=\"ez-toc-container\" class=\"ez-toc-v2_0_76 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.esds.co.in\/blog\/debit-card-security-breach-india\/#Debit_Card_security\" >Debit Card security<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.esds.co.in\/blog\/debit-card-security-breach-india\/#What_is_the_Current_Scenario\" >What is the Current Scenario?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.esds.co.in\/blog\/debit-card-security-breach-india\/#How_ATM_security_breach_Happened\" >How ATM security breach Happened?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.esds.co.in\/blog\/debit-card-security-breach-india\/#What_Analysis_and_Investigation_Reports_say\" >What Analysis and Investigation Reports say?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/www.esds.co.in\/blog\/debit-card-security-breach-india\/#What_steps_should_be_taken_to_avoid_such_incidents\" >What steps should be taken to avoid such incidents?<\/a><\/li><\/ul><\/nav><\/div>\n\n<p><b><span style=\"font-size: medium;\"><span style=\"color: #204a3a;\">The recent biggest ATM security data breach in India is an alarming situation where banks need to focus on safeguarding their systems to avoid a similar breaches in the future.<\/span><b><\/b><\/span><\/b><\/p>\n<h2><span class=\"ez-toc-section\" id=\"What_is_the_Current_Scenario\"><\/span><span style=\"color: #3a6e5b;\">What is the Current Scenario?<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>3.2 million debit cards in India were \u201ccompromised\u201d due to a major security breach, termed as India&#8217;s biggest ATM security breach. The banks denied responsibility for the huge mishap in the Indian banking sector. Banks floated out SMSes to their customers to change their ATM PINs (Personal Identification Number) and even blocked ATM cards, to avoid further damage. This episode came to light when banking customers raised complaints about unauthorized usage of their money from locations of China and US. The victims received OTPs, SMSes to pay the vendors while some received payment notifications using debit cards.<\/p>\n<p>All the ATM card platforms were adversely affected. About 2.6 million cards on Visa and Mastercard platform while 6 lakhs on RuPay, asper the reports. \u00a0Of all the banks that suffered a hit, SBI, HDFC Bank, ICICI Bank, YES Bank and Axis Bank had the worst.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"How_ATM_security_breach_Happened\"><\/span><span style=\"color: #3a6e5b;\">How ATM security breach Happened?<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Hitachi provides ATM, POS (point of sale) and other services to white collar banks. The initial reports suggest that the breach was caused by malicious software -malware- introduced in systems of Hitachi Payment Services. This enabled fraudsters to steal card data and eventually steal funds. About 3.2 million cards were used between 25 May to 10 July from Yes Bank LTD ATM network, managed by Hitachi. It was in September that the tremors of this malware attack were felt.<\/p>\n<p>The controlling authority, NPCI (National Payments Corporation of India), confirmed that there was a &#8220;possible compromise at the payments switch provider&#8217;s system.&#8221; The customers using their cards on the infected switches have a high probability that their data will be compromised.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"What_Analysis_and_Investigation_Reports_say\"><\/span><span style=\"color: #3a6e5b;\">What Analysis and Investigation Reports say?<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>The Yes bank spokesperson said that they have proactively done a comprehensive audit of their ATM and POS networks and found no evidence of a breach or compromise.<\/p>\n<p>Loney Antony, Managing Director, Hitachi Payment Services declared that the interim report published by an audit agency suggests no compromise or breaching in the systems.<\/p>\n<p>National Payments Corporation of India (NPCI) proclaims, a preliminary number, about 641 customers across 19 banks have been cheated of Rs 1.3 CR due to these fraudulent transactions.<\/p>\n<p>The debit card payment platforms like Visa, Mastercard and Rupay confirmed their own networks were not infected, but they would be helping Indian agencies and authorities in investigation.<\/p>\n<p>SISA, a certified agency carried out a detailed audit of Hitachi systems. The report of which does not demonstrate any system-level breach of Payment Systems.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"What_steps_should_be_taken_to_avoid_such_incidents\"><\/span><span style=\"color: #3a6e5b;\">What steps should be taken to avoid such incidents?<\/span><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Since the breach happened directly at the banking system end, a customer can&#8217;t do much to mitigate the effects. This is an alarming situation for the financial sector in India. Banks should safeguard their systems with the latest technology. The recommended steps would be regular utilization of <strong><a href=\"https:\/\/esds.co.in\/security\/vtmscan\" target=\"_blank\" rel=\"noopener noreferrer\">website scanner<\/a><\/strong>\u00a0to periodically scan websites and use of WAF on mission critical applications. Though SBI has already floated SMSs to change the PIN, will reissue\/replace new ATM\/Debit cards to 6lakh customers. The incident has no doubtedly deteriorated the trust of Indian consumers on plastic money, making them feel unsafe.<\/p>\n<p>Banks and other financial organizations should now, once again, embed trust in minds of Indian customers by investing more on cyber security infrastructure. Hosted <strong><a href=\"https:\/\/www.esds.co.in\/core-banking-hosting.php\" target=\"_blank\" rel=\"noopener noreferrer\">Core Banking Solution<\/a><\/strong>, turnkey banking solutions and well chalked-out DR plans are the need of BFSI sector.<\/p>\n<p>Moreover, to avoid similar instances, a trusted ATM switch provider and payment service provider is vital for banks.<\/p>\n<p>The Indian Finance Ministry seeks information from Indian Banks Association. The Finance Ministry have asked various investigation agencies and RBI to submit a report on one of largest banking security breach, within\u00a0 8-10 days.<\/p>\n<hr \/>\n<p><span style=\"color: #008080;\">Take a step forward to make your bank security architecture strong and robust. <\/span><\/p>\n<p><span style=\"color: #008080;\">Reach us at <strong><a style=\"color: #008080;\" href=\"tel:1800 209 3006\">1800 209 3006<\/a><\/strong><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Debit Card security The recent biggest ATM security data breach in India is an alarming situation where banks need to focus on safeguarding their systems to avoid a similar breaches in the future. What is the Current Scenario? 3.2 million debit cards in India were \u201ccompromised\u201d due to a major security breach, termed as India&#8217;s&#8230; <\/p>\n<div class=\"clear\"><\/div>\n<p><a href=\"https:\/\/www.esds.co.in\/blog\/debit-card-security-breach-india\/\" class=\"gdlr-button small excerpt-read-more\">Read More<\/a><\/p>\n","protected":false},"author":34,"featured_media":7976,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[1156,1271],"tags":[],"class_list":["post-7975","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-core-banking","category-security-2"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.esds.co.in\/blog\/wp-json\/wp\/v2\/posts\/7975","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.esds.co.in\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.esds.co.in\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.esds.co.in\/blog\/wp-json\/wp\/v2\/users\/34"}],"replies":[{"embeddable":true,"href":"https:\/\/www.esds.co.in\/blog\/wp-json\/wp\/v2\/comments?post=7975"}],"version-history":[{"count":15,"href":"https:\/\/www.esds.co.in\/blog\/wp-json\/wp\/v2\/posts\/7975\/revisions"}],"predecessor-version":[{"id":12096,"href":"https:\/\/www.esds.co.in\/blog\/wp-json\/wp\/v2\/posts\/7975\/revisions\/12096"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.esds.co.in\/blog\/wp-json\/wp\/v2\/media\/7976"}],"wp:attachment":[{"href":"https:\/\/www.esds.co.in\/blog\/wp-json\/wp\/v2\/media?parent=7975"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.esds.co.in\/blog\/wp-json\/wp\/v2\/categories?post=7975"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.esds.co.in\/blog\/wp-json\/wp\/v2\/tags?post=7975"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}