RBI

Bank ATM Credit Debit Card Data Security Breach-Hacking. RBI urges card holding bank customers to change the PIN and passwords periodically

Bank ATM Credit Debit Card Data Security Breach-Hacking. RBI urges card holding bank customers to change the PIN and passwords periodically.

Reserve Bank of India

Date : Oct 24, 2016

ATM/Debit Card Data Breach

The Reserve Bank of India convened a meeting today with senior officials from select banks, National Payment Corporation of India and card network operators to review the steps taken by various agencies to contain the adverse fall out of certain card details alleged to have been compromised.

It has come to the Reserve Bank’s notice on September 8, 2016 that details of certain cards issued by a few banks had been possibly compromised at ATMs linked to the ATM Switch of one of the service providers. The issue is currently being investigated by an approved forensic auditor, under PCI-DSS framework.

The number of cards misused, as per currently available information, is few. As a matter of abundant precaution, card network operators concerned were earlier advised to share the details of cards used during the period of such exposure. Based on this, banks have been taking necessary remedial action to avoid any potential abuse of such cards in future by unscrupulous elements and to protect the interest of their customers. Banks have taken measures including advising the customers to change PIN, blocking payments at international locations, reducing the withdrawal limits, monitoring unusual patterns, replacing the cards and  re-crediting the accounts of cardholders for amounts wrongly debited.

The Reserve Bank urges the cardholding bank customers that it is a good practice to change the PIN and passwords periodically and not to share them with anyone for any reason. Banks do not ask for card or account details from their customers, hence, customers may exercise caution and not reveal such information to any person on phone or email.

The Reserve Bank of India has already issued instructions to banks vide Circular dated June 2, 2016 on Cyber Security Framework in Banks. Banks have once again been advised to review the extant cyber security arrangements. RBI has emphasized an early implementation of this framework so that (i) possibility of such incidents happening in future is minimised and (ii) in the event of such incidents, containment measures are taken immediately.

Alpana Killawala
Principal Adviser

Press Release : 2016-2017/1014

Share

Recent Posts

  • Income Tax

Merely ex-parte rectifying computation without amending assessment order not make it nullity- ITAT

Merely rectifying computation without amending assessment order without notice to assessee does not nullify the entire assessment  - ITAT In…

10 hours ago
  • Income Tax

Once assessee discharges primary onus, it shifts to AO to bring evidence to contrary – ITAT

Once assessee discharges primary onus of providing basic documents in support of the identity, genuineness and the creditworthiness it shifts…

1 day ago
  • Income Tax

Cost Inflation Index for FY/Tax Year 2026-27 notified by CBDT. See Up-to-date Table of CII

CBDT has notified Cost Inflation Index for Financial Year / Tax Year 2026-27 CBDT has notified "384" as Cost Inflation…

2 days ago
  • Income Tax

Power of CIT(A) u/s 251(1)(a) to remand case can be exercised only in best judgment assessment

Power of CIT(A) under section 251(1)(a) to remand case could be exercised only when the assessment is passed u/s 144…

2 days ago
  • ICAI

ICAI (Global Networking) Guidelines, 2025 kept in abeyance

ICAI (Global Networking) Guidelines, 2025 kept in abeyance In February 2026, ICAI had issued ICAI (Global Networking) Guidelines 2025 to…

3 days ago
  • Empanelment

Bank of India-Online Concurrent Audit Empanelment FY 2026-27. Last Date : 15.07.2026

Bank of India-Online Concurrent Audit Empanelment  FY 2026-27. Last Date to apply is 15.07.2026 Notice for CA firms applying for…

3 days ago