1. Home
  2. WhatsApp Pay may put Indian digital banking at risk: Experts

WhatsApp Pay may put Indian digital banking at risk: Experts

Agencies
November 8, 2019

After WhatsApp accounts of 121 Indians were compromised by the Israeli spyware Pegasus, experts have warned that the payment feature the Facebook-owned platform is planning to launch in India may put the digital banking system at risk.

"WhatsApp payment needs to be seen with microscopic eye, primarily because in payment you will be dealing with sensitive personal data and cyber security is going to be an essential building block component for WhatsApp to demonstrate its due diligence," Pavan Duggal, one of the nation's top cyber law experts, told IANS.

The Ministry of Electronics and Information Technology (Meity) has already expressed dissatisfaction over the manner WhatsApp communicated about the compromised accounts.

The piece of NSO Group software called Pegasus allegedly exploited WhatsApp's video calling system by installing the spyware via missed calls to snoop on 1,400 users globally. The devices were compromised with just a WhatsApp video call.

In May, WhatsApp, which has 400 million users in India, urged its 1.5 billion global users to upgrade the app after discovering the vulnerability.

"WhatsApp's recent operations have shown that it's difficult for the government to get information from it. WhatsApp is an intermediary under the Information Technology Act and is mandated to exercise due diligence under the law. But it has failed to do due diligence," Duggal said.

"You should not be in a hurry to grant new licences or permission to WhatsApp without being satisfied with its adherence to cyber-security norms, international best practices and Indian laws," he said.

The Facebook-owned company is learnt to have countered the government charge that it didn't inform it about a privacy breach on the messaging platform. WhatsApp didn't even comply with the data breach notification law in India, Duggal said.

"It (WhatsApp) didn't follow reasonable security practices as mandated in Section 43A of the IT Act, 2000. In fact, it abetted the crime of un-authorised access too. Granting WhatsApp pay licence should be given a second thought by the Reserve Bank of India," said Prashant Mali, cyber lawyer at Bombay High Court.

In light of the recent hack, the government, the RBI and the National Payments Corporation of India (NPCI) is reportedly evaluating the risk of allowing social media apps into the digital payment ecosystem.

"With the government, the RBI and the NPCI planning to evaluate the risks involved in making payments via social media apps and services, the security of the UPI payment infrastructure on WhatsApp Pay has been rendered under a cloud of vulnerability," said Salman Waris, Managing Partner at TechLegis Advocates & Solicitors, a law firm.

The RBI revealed in an affidavit in the Supreme Court earlier that WhatsApp had not complied with the data localisation norms. In an April 2018 circular, the RBI stated that the data of any payment banking system have to physically located in India.

"The history of WhatsApp has shown that it's not cooperative with the government in sharing of information. If financial information is compromised, it will not only have an impact on users, but it can also have an impact on the sovereignty and security of India," Duggal said.

The government must go slow till the time WhatsApp demonstrates compliance to Indian law and showed that the platform was secure, he said.

"Because almost every phone user in India is on WhatsApp, it's all the more important for the government and the RBI to ensure that WhatsApp not only complies with the parametres of cyber security and data localisation norms, but also the IT Act and the rules and regulations thereunder.

"If WhatsApp doesn't comply with the data localisation norms, rules and regulations of the IT Act, then there is no question of granting new permission," Duggal said.

In a statement, a WhatsApp spokesperson said that safety and security of users remains the platform's highest priority.

"In May, our security team caught and stopped a cyber attack designed to send malware to mobile devices. Unable to break end-to-end encryption, this kind of malware abuses vulnerabilities within the underlying operating systems that power our mobile phones," the WhatsApp spokesperson said.

"Technology companies are constantly working to stay ahead of these kind of challenges through updates and patches. The safety and security of our users remains our highest priority, which is why in May we blocked the attack and have taken action in the courts to hold NSO accountable," the statement added.

Facebook filed a lawsuit against Israel's NSO Group last month. According to Facebook, the NSO Group violated laws, including the US Computer Fraud and Abuse Act.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
May 27,2020

May 27: At a time when India is struggling with the deadly coronavirus, huge swarms of locusts in many states has bought nightmares to the farmers.

Experts warn of extensive crop losses if authorities fail to curb the fast-spreading swarms by June when monsoon rains spur rice, cane, corn, cotton, and soybean sowing.

Locusts entered India after traveling from Africa through Yemen, Iran and Pakistan.

After massive devastation in Pakistan, t swarms of locusts entered India through Rajasthan and Gujarat. The number is so large that the farmers and authorities are feeling helpless in tackling the threat.

The situation has become more alarming as the locusts is spreading across the country at an extremely fast rate. After badly affecting the crops in Rajasthan, Gujarat, Maharashtra, and Madhya Pradesh, the swarm of locust have now entered Uttar Pradesh.

In Rajasthan alone, the locust attack has damaged 5 lakh hectares of crop and nearly 17 districts of Madhya Pradesh have also seen their terror. Earlier from May 2019 to February 2020, too, the locust swarms entered India several times.

Speaking on the current situation, Dr Ram Pravesh, District Agricultural Officer, Agra, Uttar Pradesh said the Department of Agriculture is working with farmers in dealing with the situation. He urged the farmers to inform their Mandal Krishi Adhikari if they require any help.

India's largest-ever locust attack was in 1993 when more than three lakh hectares of cultivated land were completely destroyed.

Earlier in 2020, farmers salvaged their wheat and oilseed crops from a previous locust scourge.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
January 30,2020

New Delhi, Jan 30: Tension spiralled in Jamia Nagar on Thursday after a man fired a pistol at a group of anti-CAA protesters, injuring a Jamia Millia Islamia student before walking away while waving the firearm above his head and shouting "Yeh lo aazadi" amid heavy police presence in the area.

Massive protests erupted in the area after the incident with hundreds of agitated people gathering near the university, breaking barricades and clashing with police personnel.

The man, who identified himself as "Rambhakt Gopal", was subsequently overpowered by police and detained. He was taken into custody and was being interrogated, police said.

The entire drama, which triggered panic in the area, was captured by television cameras that showed the man in light coloured pants and a dark jacket, walking away on an empty road barricaded by police, turning around and shouting at the protesters in Hindi, "Here, take this freedom."

The gunman went live on Facebook before the brandishing the gun. Police said they were verifying whether it is his real name.

Before the attack, the man also put out messages on Facebook stating "Shaheen Bhag Khel Khatam" (Run Shaheen, the game is over). Another message stated, "Please wrap me in saffron in my last journey with slogans of Jai Shri Ram". His Facebook profile was deleted after screenshots of his posts were circulated widely on social media platforms.

Several students recapped how their peaceful march on Gandhi's death anniversary became violent.

"We were moving towards the Holy Family Hospital where the police had raised barricades. Suddenly, a gun-wielding man came out and opened fire. One bullet hit my friend's hand," Aamna Asif, a student of economics at the university, told PTI.

She said her friend, Shadab Farooq, a mass communication student, was trying to calm the attacker but he shot at him injuring his left hand.

Farooq, who belongs to Kashmir, was taken to the AIIMS Trauma Centre.

Ragibh Naushad, an LLB student at the university, said, "The Jamia Coordination Committee organised a march to pay homage to Gandhi ji on his death anniversary. It started at 12 noon from Gate number 7, but police denied the permission and stopped the march near the Holy Family hospital.

"A man named Gopal, came there and started brandishing a weapon and later shot a round. He was also chanting pro-CAA slogans."

The incident led to panic in the area.

Khalid Hassan, a JMI alumnus, said initially many were not sure whether it was a gunshot or a tyre burst.

There was heavy police and media presence when the incident took place.

The students were heading from Jamia to Mahatma Gandhi's memorial Rajghat. The march was stopped at the Holy Family Hospital near the university.

Chinmoy Biswal, DCP (southeast), said the students wanted to take out a march from Jamia to Rajghat but were denied permission.

"They were being repeatedly told that the protest should be carried out peacefully. We had barricaded the road just before the Holy Family hospital. Meanwhile, a person was seen in the crowd who waved something which appeared to be a weapon."

"We have detained him and are interrogating him. One person has also been injured," Biswal said.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
Agencies
March 10,2020

New Delhi, Mar 10: Crisis-hit Yes Bank on Tuesday said that it has enabled inward IMPS and NEFT services.

The move allows people to send money from other bank accounts to their Yes Bank account through IMPS (Immediate Payment Service) and NEFT (National Electronic Funds Transfer) mode.

In a tweet, the bank also said that Yes Bank customers can pay their credit card dues and loan obligations from other bank accounts.

"Inward IMPS/NEFT services have now been enabled. You can make payments towards YES BANK Credit Card dues and loan obligations from other bank accounts. Thank you for your co-operation. @RBIA @FinMinIndia," said tweet.

Last week Yes Bank was placed under moratorium and a withdrawal cap of Rs 50,000 was imposed till April 3.

The administrator of Yes Bank, Prashant Kumar and Rajnish Kumar, the Chairman of the State Bank of India are hopeful that moratorium would be lifted within a week.

As per the Reserve Bank of India (RBI) draft reconstruction scheme for the crisis-hit private lender, the SBI will take up 49 per cent in the bank by investing Rs 2,450 crore.

The new board of directors will stand constituted from the appointed date. It will comprise a CEO and MD, non-executive chairman and non-executive directors. The SBI will have nominee directors appointed on the board of the reconstructed bank.

The RBI may appoint additional directors to the board, who shall continue in office for one year, or until an alternate board is constituted by Yes Bank.

The SBI will not reduce its holding below 26 per cent before completion of three years from the date of infusion of the capital.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.