RBI warns banks on vulnerability of ATMs running on windows XP or unsupported version of operating system and non-implementation of other security measures
RBI has expressed concerns over the ATMs running on Windows XP and/or other unsupported operating systems.
In a recent communication made to all Scheduled Commercial Banks, Small Finance Banks and Payment Banks and white-Label ATM Operators, the RBI has expressed displeasure over slow progress on the part of the banks in addressing these issues.
RBI has frawn attention to the vulnerability arising from the ATMs operating on unsupported version of operating system and non-implementation of other security measures which could potentially affect the interests of the banks’ customers adversely, apart from impinging on the image of the bank.
Banks and White-Label ATM Operators have been advised to initiate immediate action in this regard and implement the following control measures as per the prescribed timelines indicated there against:
| Sr. No. | Control Measures for the ATMs | To be completed by |
| a. | Implement security measures such as BIOS password, disabling USB ports, disabling auto-run facility, applying the latest patches of operating system and other softwares, terminal security solution, time-based admin access, etc. | August 2018 |
| b. | Implement anti-skimming and whitelisting solution. | March 2019 |
| c. | Upgrade all the ATMs with supported versions of operating system. Such upgrades shall be carried out in a phased manner to ensure that in respect of the existing ATMs running on unsupported versions of operating system, | |
| i. Not less than 25% of them shall be upgraded by | September 2018 | |
| ii. Not less than 50% of them shall be upgraded by | December 2018 | |
| iii. Not less than 75% of them shall be upgraded by | March 2019 | |
| iv. All of them shall be upgraded by | June 2019 |
ICAI revises eligibility criteria for empanelment of organizations to impart industrial training (Effective from 1st January, 2026) The Council of…
Date of digital signature and issuance determines the date of a notice u/s148 of the Income Tax Act - ITAT…
DGFT authorises IACCIA to issue Certificate of Origin (Non- Preferential) w.e.f. 9th January 2026 In exercise of powers conferred under…
Net profit rate may not per se experience variation commensurate to the increase of turnover. In a recent judgment, Allahabad…
Mushroom growing apparatus cannot be classified as ‘agricultural machinery’ under Customs Tariff Heading 8436. In a recent judgment, Hon'ble Supreme…
Statutory presumption attached to issuance of a cheque, being one made in discharge of a legally enforceable debt or liability,…