Skip to main content

Sebi steps up effort to tackle cyber crime

By
Following reports of cyber security threat in the Indian banking system, the Securities and Exchange Board of India (Sebi) has initiated an urgent review of the overall risk management and has decided to set up a high-level committee to ensure prudent response and quick, corrective measures for any cyber threat.
The move follows the damage-control exercise that the government, the Reserve Bank of India and banks initiated after a cyberattack that put 3.2 million bank debit cards at risk. While State Bank of India blocked 600,000 cards — which the bank will replace free of cost and send to customers — other banks such as Axis Bank, HDFC Bank and ICICI Bank have asked their customers to change the security codes or replace the cards.
A senior Sebi officer said although the securities market systems were being upgraded constantly, it was decided to constitute a high-level committee to ensure fullproof security. The committee will be headed by a whole-time member of Sebi and will tackle unforeseen circumstances and also oversee the implementation of the regulatory policies across markets in the area of cyber security.
Sebi’s team would comprise experts from the information technology (IT) sector. The regulator will also ask stock exchanges to create internal task forces that will essentially send alerts to this committee and take measures to safeguard their systems, networks, and databases from cyberattacks, said the official cited above.
Sebi has come across a few cases of technical glitches hitting one of the stock exchanges and other financial institutions in the recent past. In August, software viruses were found in three personal computers at the BSE, which were identified and formatted, though the viruses did not have any impact on the working of the BSE or any of its departments. However, the regulator has apprehensions that the problem at these institutions could be due to cyberattacks.
Sebi had in July 2015 issued a set of guidelines for the stock exchanges and other market infrastructure institutions (MIIs) to safeguard their systems. Sebi had said MIIs need to have robust cyber security framework to provide essential facilities and perform systemically critical functions relating to trading, clearing and settlement in the securities market.
The mechanism of cyber security and cyber resilience would include governance, identify, protection monitoring and detection, responses and recovery, sharing of information, training and periodic audit, Sebi had said in the circular. The same circular was issued early this year for commodity market as well.
According to cyber law experts, the regulator will have to enforce the law rather than having advisory and guidelines. “This is a reactive action after the cyber attack in the banking industry, which has already taken place. Such a committee will not deter any future cyberattack. The law itself is deficient as there is no dedicated cyber security law in the country. So, consequently, the roles and duties of intermediaries are not at all defined,” said Pavan Duggal, a cyber law specialist. He added there’s a need to enforce strict accountability on organisations, which do not follow cyber security standards.
Equity and commodity futures exchanges have huge repository of information and sensitive data. Therefore, they have to make cyber security a top priority, say experts.
“The mandate of implementing cyber security comes through law, and not through advisory or guidelines. To begin with, the regulator must have teeth of law which ensures compliance or they face severe consequences,” added Duggal.
According to security experts, cyber criminals typically use proxy servers with the help of technology to hide their footprints. Trails of such attacks are often encrypted. The International Organization of Securities Commissions, whose member include 120 securities regulator including Sebi, had surveyed 89 exchanges in 2014, which showed more than half of the securities exchanges had been on the receiving end of such attacks.
GUARDING MARKET
  • Sebi to constitute a high-level committee to ensure cyber security in stock market .
  • Committee to oversee implementation of regulatory policies in the area of cyber laws. 
  • Exchanges will be directed  to form internal taskforce to send alerts on cyber strike or security breach 
  • Steps to ensure safeguard systems, network, databases from cyberattack are put in place.
Business Standard New Delhi,26th October 2016

Comments

Post a Comment

Popular posts from this blog

Credit card spending growth declines on RBI gaze, stress build-up

By
  Credit card spends have further slowed down to 16.6 per cent in the current financial year (FY25), following the Reserve Bank of India’s tightening of unsecured lending norms and rising delinquencies, and increased stress in the portfolio.Typically, during the festival season (September–December), credit card spends peak as several credit card-issuing banks offer discounts and cashbacks on e-commerce and other platforms. This is a reversal of trend in the past three financial years stretching to FY21 due to RBI’s restrictions.In the previous financial year (FY24), credit card spends rose by 27.8 per cent, but were low compared to FY23 which surged by 47.5 per cent. In FY22, the spending increased 54.1 per cent, according to data compiled by Macquarie Research.ICICI Bank recorded 4.4 per cent gross credit losses in its FY24 credit card portfolio as against 3.2 per cent year-on-year. SBI Cards’ credit losses in the segment stood at 7.4 per cent in FY24 and 6.2 per cent in FY23, the...
Post a Comment
Read more

SFBs should be vigilant, proactive to mitigate risks: RBI deputy guv

By
  The Reserve Bank of India’s Deputy Governor Swaminathan J on Friday instructed the directors of small finance banks (SFBs) to be vigilant and proactive in identifying emerging risks in the sector.Speaking at a conference for directors on the boards of SFBs, Swaminathan highlighted the role of governance in guiding SFBs towards sustainable growth with stability. He also emphasised the importance of sustainable business models.Additionally, he highlighted the need for strengthening cybersecurity to protect the entities against digital threats and urged for a stronger focus on financial inclusion, customer service, and grievance redressal to ensure a broader reach of banking services.Executive Directors S C Murmu, Rohit Jain, and R L K Rao, along with other senior officials representing the Supervision, Regulation, and Enforcement Departments of the RBI, also participated in the conference.   -  Business Standard  30 th  September, 2024
Post a Comment
Read more

Brigade Hotel Ventures files draft papers with Sebi for Rs 900 crore IPO

By
  Brigade Hotel Ventures Ltd, owner and developer of hotels in South India, has filed draft papers with capital markets regulator Sebi to raise Rs 900 crore through an initial public offering (IPO).The proposed IPO is entirely a fresh issue of equity shares with no Offer-for-Sale (OFS) component, according to the draft red herring prospectus (DRHP).Proceeds from the issue to the tune of Rs 481 crore will go towards payment of debt, Rs 412 crore will be allocated to the company and Rs 69 crore to its material subsidiary, SRP Prosperita Hotel Ventures Ltd.Additionally, Rs 107.52 crore will be used to purchase an undivided share of land from the Promoter, BEL, and the remaining funds will support acquisitions, other strategic initiatives, and general corporate purposes.The company may raise up to Rs 180 crore through a Pre-IPO Placement.   If the placement is undertaken, the issue size will be reduced.Brigade Hotel Ventures Ltd is a wholly-owned subsidiary of Brigade Enterprises ...
Post a Comment
Read more