Adopt risk-based supervision, zero-trust approach to curb cyberfrauds: RBI
The Reserve Bank of India advocates for risk-based supervision and AI-aware defenses to combat escalating online fraud and bolster cybersecurity within the financial sector. The increasing reliance on digital services and third-party providers amp...
By PTI |
Reuters
The Reserve Bank on Monday made a case for adopting risk-based supervision, zero-trust approaches and AI-aware defense strategies to tackle online frauds and boost cybersecurity resilience in the financial sector.
The central bank flagged that phishing and social engineering attacks are evolving through generative AI-powered methods, such as deepfakes and contextual frauds.
"The expanding scale of digital financial services, cloud-based infrastructure and interconnected systems across sectors has exponentially increased the cyberattack surface," said the RBI's bi-annual the Financial Stability Report (FSR).
It further said given the systemic interconnectedness of financial entities and technology service providers, ensuring cyber resilience is critical to maintaining trust, stability and business continuity.
As organisations increasingly depend on third party service providers for their business operations, vulnerabilities in the supply chain could pose systemic risk.
Furthermore, the RBI said the overreliance on a few major IT and cloud service providers has created dependency and vendor lock-in problems leading to concentration risks.
Vulnerability in one system can quickly propagate across networks, affecting multiple entities, the report said.
"In this context, cybersecurity resilience will depend on the Security Operations Center (SOC) efficacy, risk-based supervision, zero-trust approaches and AI-aware defence strategies," it said.
Graded monitoring mechanisms, the use of behavioral analytics for threat detection, hands-on training, continuous learning and simulation-based exercises such as through Continuous Assessment-Based Red Teaming (CART), scenario-based resilience drills and uniform incident reporting frameworks are vital for enhancing the resilience of the digital ecosystem, it said.
The Financial Stability Report (FSR) reflects the collective assessment of the Sub-Committee of the Financial Stability and Development Council (FSDC) on the resilience of the Indian financial system and risks to financial stability.
The RBI also said regulators are aligned with these efforts, focusing on digital fraud prevention, secure digital lending, and mutual fund reforms.
The FSDC and its sub-committee continues to play a vital role in building a resilient and secure financial system.
The report further said the rapid growth of digital transactions, though instrumental in enhancing convenience and efficiency, has been accompanied by a significant rise in financial frauds.
The central bank flagged that phishing and social engineering attacks are evolving through generative AI-powered methods, such as deepfakes and contextual frauds.
"The expanding scale of digital financial services, cloud-based infrastructure and interconnected systems across sectors has exponentially increased the cyberattack surface," said the RBI's bi-annual the Financial Stability Report (FSR).
It further said given the systemic interconnectedness of financial entities and technology service providers, ensuring cyber resilience is critical to maintaining trust, stability and business continuity.
As organisations increasingly depend on third party service providers for their business operations, vulnerabilities in the supply chain could pose systemic risk.
Furthermore, the RBI said the overreliance on a few major IT and cloud service providers has created dependency and vendor lock-in problems leading to concentration risks.
ADVERTISEMENT
Vulnerability in one system can quickly propagate across networks, affecting multiple entities, the report said.
"In this context, cybersecurity resilience will depend on the Security Operations Center (SOC) efficacy, risk-based supervision, zero-trust approaches and AI-aware defence strategies," it said.
Graded monitoring mechanisms, the use of behavioral analytics for threat detection, hands-on training, continuous learning and simulation-based exercises such as through Continuous Assessment-Based Red Teaming (CART), scenario-based resilience drills and uniform incident reporting frameworks are vital for enhancing the resilience of the digital ecosystem, it said.
The Financial Stability Report (FSR) reflects the collective assessment of the Sub-Committee of the Financial Stability and Development Council (FSDC) on the resilience of the Indian financial system and risks to financial stability.
ADVERTISEMENT
The RBI also said regulators are aligned with these efforts, focusing on digital fraud prevention, secure digital lending, and mutual fund reforms.
The FSDC and its sub-committee continues to play a vital role in building a resilient and secure financial system.
ADVERTISEMENT
The report further said the rapid growth of digital transactions, though instrumental in enhancing convenience and efficiency, has been accompanied by a significant rise in financial frauds.
Download
The Economic Times Business News App for the Latest News in Business, Sensex, Stock Market Updates & More.
The Economic Times Business News App for the Latest News in Business, Sensex, Stock Market Updates & More.
Download
The Economic Times News App for Quarterly Results, Latest News in ITR, Business, Share Market, Live Sensex News & More.
The Economic Times News App for Quarterly Results, Latest News in ITR, Business, Share Market, Live Sensex News & More.
Related Articles
First phase pilot of Risk Based Supervision from next month: IRDAIADVERTISEMENT
