Menu

CYBERCRIME IN BANKING SECTOR

Publications, Research paper

ABSTRACT

Cybercrime refers to the illegal activity or fraud that is done with the help of internet or computers.

Cybercrime in the field of banking sector in India is one of the most committed crime, as time is passing and the internet is becoming more popular among the people, and as more people are using it, cybercrime is also increasing. This is the era where people of the country are more used to internet for their each and every work, as in the field of banking sector all the transactions of the bank are done through internet from depositing money to withdrawing money by using mobile banking, internet banking, UPI, and other works of bank also require internet for their function due to which the privacy of the people are more exposed on internet which is used by the attacker in the commission of cybercrime. Cybercrime includes phishing, identity theft, hacking, fraudulent transactions, online scams, often accessing confidential information like passwords and card details which we used during online banking transactions. The consequences of the increasing cybercrime in banking sector is to financial loss to both the customer and banks, loss of customer trust, legal and regulatory consequences, damage to bank’s reputation, and services disruptions. Nowadays cybercrime in the field of banking sector is increasing rapidly as the data on cybercrime is issued by various government organisations from which we know about the increasing rate of cybercrime, as the government also issues number of measures and techniques to create awareness among the customer against cybercrime and also spreading information about the mindset of cyber attacker and how people protect themselves from the cyber attacker. To control the cybercrime in the country there is a need of strong cybersecurity system, which control the increasing number of crimes which are more frequent in recent times in the field of banking sector. Government of India provides some legal framework in the field of cybercrime like Information Technology Act, 2000, and provisions under Bhartiya Nyaya Sanhita, 2024 provide lawful repercussions to offender. Despite these regulations, the dynamic nature of cyber threats demands continuous technological upgrades, employee training, and customer awareness.

KEYWORDS

Cybercrime

Cyber fraud

Cybersecurity

Hacking

Phishing

Data breach

Mobile banking scam

UPI fraud

Encryption

Biometric authentication

Awareness program

INTRODUCTION

In this digital era, people are commonly used to internet not only in the banking sector but internet are using by the people in each and every sector. Today’s without internet life of the people can’t imagine as the life of the people circumscribes before the internet. Internet plays a significant role in the field of business-like banking sector where transactions of money i.e., depositing and withdrawing  can be done either through mobile banking, UPI, internet banking which is using our credit card or debit card password or PIN number in completion of process of transactions, at this point of time hackers are used to steal confidential information of the people while confidential information is being shared by people through internet for the completion of banking transactions or other work which is being done only through internet and require confidential data of the people like Aadhaar number, pan card number as being customer of bank, bank’s account should be linked through Aadhaar and Pan where the information  related to this is being shared on internet and the cyber attackers gets information from there which is being used by them to commit cybercrime i.e., to steals money from the customer account without customer’s knowledge which cause financial loss to both the customer and the bank and also trust of customer is harming, which leads to damaging the reputation of bank and also affect or disrupt the service of bank. Nowadays, cybercrime becomes a global issues where cyber attackers used to hack mobile phone and computer of a person and steal confidential data or personal information from anywhere in the world. To protect the customer from cybercrime RBI had issued certain guidelines to the bank in order to operate transactions using internet i.e.,

  • Cyber security framework-continuous surveillance of the customer data when customer uses their confidential information or data while using net banking and mobile banking or other online platform where customers carry out their transactions.
  • Introduce robust access control techniques, protecting data both during storage and while being transferred using encryption methods.
  • To enhance cyber resilience, banks are urged to create dedicated centres for continuous monitoring, threat identification, and quick response to cyber incidents.
  • Banks also maintain a formal mechanism for communicating cyber anomalies and security incidents to the Reserve Bank of India, banks are accountable to maintain security risk related to external service provider, escalating a cybersecurity issues to RBI on time.  
  • Anti-phishing i.e., the bank makes efforts to educate its customers on how the customers identify and should prevent himself from deceptive attack and protect their banking investment or assets
  • Apply data leak prevention measures to safeguard confidential business and customer data.
  • Give knowledge to the working employees, service provider and customer about cyber security threat and its effective techniques.

A number of government platform which is used to collect data about the cybercrime that takes place in our country as well as globally, the report published by the recognised platform about the cybercrimes that the significant number of cybercrime takes place in India as well as globally is in the field of banking sector where scammer steal confidential data of the customer using spyware when customers carries out banking transactions through mobile banking or through others means which uses internet for the completion of required service. By stealing information scammer withdraw money from the customer account which leads to financial loss to both the bank as well as customer and the customer’s trust is also breached.

Research methodology

This paper is of descriptive nature and the research is based on secondary sources of data for deep analysis of cybercrime in banking sector and the measures taken by the bank to overcome from the cybercrime and the guidelines issued by the RBI to protect the privacy and confidential information and data of the customers from stealing by the cyber attackers. This paper gives a deep overview to the reader about the commission of a cybercrime in the field of banking sector and the techniques to control the cybercrime by using different kinds of safety measures. Secondary sources like articles, websites, journals are used for research.

Review of literature

Cybercrime operates beyond physical boundaries the jurisdiction of the cybercrime is not known as it is a global phenomenon which affects the people of whole world. Internationally different convention of different countries on cybercrime gives a broad idea about the commission of cybercrime in distinct ways-

Firstly, as European Convention on cybercrime, it’s the first treaty on computer and internet crimes, the primary objective in combating cybercrime is to ensure the harmonisation of national criminal laws by aligning the definition of cyber- related offenses and associated crimes. Additionally, it seeks to standardised domestic criminal procedural framework essential for the effective investigation and prevention of such offences.

According to UK law cybercrime includes activities such as gaining unauthorised access to computer system or data, which is recognised as a criminal offense under cybercrime regulations.

Cybercrime refers to illegal activities where a computer or network is either used to commit the crime or becomes the target of the crime.

In today’s world cybercrime in the field of banking sector is more frequent crime which involves the stealing of customer data which leads to financial loss to the customer in the form of withdrawing money from the customer account without customer permission. [1]

Cybercrime in banking sector

The concept of cybercrime according to international journal of education and science research review (2016) is a task carried out with the help of digital technology conducted via global cyber network that are unlawful or unauthorised, carried out with the support of specific individuals or groups. In the banking sector, the cybercrimes are committed with the help of internet which involves the withdrawing and transferring of customer money from their bank account by using illegal means named as banking malpractice. Cybercrime can be divided into four major categories i.e., cyber-deception, cyber-pornography, cyber-violence, and cyber-trespass. The cybercrime under banking sector is sub classified under cyber-deception which involves unethical work of scammer such as robbing of confidential information or sensitive data of the customer i.e., debit and credit card password, UPI pin. It also includes intellectual violation and money laundering, the ultimate goal of the scammer is to take access of the customer bank account and to transfer the money of the customer’s to other bank account which cause financial loss to both the customer and bank, and also effect the reputation of the bank, it also affects and disrupt the service of the bank. Several studies have highlighted that cybercriminals frequently targeted banking institutions by infiltrating their information system. This unauthorised access allows them to extract sensitive customer data, which is subsequently exploited to execute fraudulent transactions, resulting in significant financial losses for account holders. [2] (Priyanka, 2016)

  1.  (Bhatiya, https://shodhgangotri.inflibnet.ac.in:8443/jspui/bitstream/20.500.14146/11934/1/1666173389970_the%20emerging%20trends%20in%20cyber%20crime%20in%20%20banking%20sector%20pdf%20final%20file.pdf)
  2. Ms Priyanka, cybercrime in Indian banking sector, 3 IJESRR, 18-20(2016)

EFFECTS OF CYBER CRIME

Cybercrime can result in long-run repercussions for the victims. Cyber attackers often engage in malicious activities such as unauthorised loan procurement, credit fraud and system breaches. These cyber threats can lead to severe and lasting damage, particularly within the banking sector, compromising financial integrity and operational stability.

Monetary loss: It means the financial institutions or their customers suffer a loss of money due to illegal online activities.

Unauthorised access to confidential information: It means gaining entry to sensitive or private data without permission or legal authority.

When someone illegally accesses confidential data such as:

  • Personal details like Aadhaar number, bank details.
  • Business secrets like financial reports trade secrets.
  • Government records.
  • Private emails or files.

Lawful repercussions: when a cyber crime occurs in the banking sector, the offender faces lawful repercussions i.e., legal actions and penalties under various laws. These are meant to punish the wrongdoer and prevent future crimes.

Example: Imprisonment, fine and penalties, freezing of bank accounts, legal proceedings, etc.

Tampering with and unlawfully obtaining identifiable data: This refers to the illegal modification, alteration, or misuse of personal data or confidential information that has been unlawfully obtained. Identifiable data means any personal information that can be used to identify an individual such as name, address, account numbers, Aadhar number, etc.

Prone to negative impact on reputation: Banks are prone to negative impacts on their reputation if they fail to protect customer data from cybercrimes.

Threat related to day-to-day business operations: Cybercrime poses a serious threat to the routine operations of businesses especially in sector like banking, finance, and e-commerce. Daily business activities such as online transactions, data processing, customer communications, and financial management can be severely disrupted by cyberattacks. [3] (Joshi, 2022)

Key Threats Includes:

  • System Downtime
  • Data Breaches
  • Financial Fraud
  • Loss of Customer Fraud
  • Legal and Regulatory Actions

Reason for Cyber Crime

User-friendly access to data- Once a cybercriminal gains unauthorised access to a computer system, they may retrieve sensitive personal information, including private financial documents belonging to customers. Such data can be extracted from banking institutions, corporate entities, or government agencies. The inadequate protection and insecure storage of confidential information within these systems represent a significant cybersecurity threat.

Lack of user diligence- All entities that rely on computer system must exercise a high degree of caution to protect the confidentiality of the data and information stored within these systems. Implementing proper use of passwords and personal identification numbers can help restrict unauthorised access. However, any lapse in responsibility or negligence may enable cybercriminals to gain access to device and sensitive records with ease.

Absence of robust internal control mechanism in banks and corporate entities- Bank utilise a range of operating system to manage their daily operations. Therefore, it is essential for them to maintain continuous internal control measure and implement a comprehensive IT audit framework. Failure to do so may lead to lapses within computerised environment, particularly due to the use of inefficient or outdated software and hardware systems. [4] (joshi, 2022)

  •  Mahesh Pratap Singh Shekhawat & Dr. Priyanka Joshi, Cyber Crime in Banking Sector: An overview, 14 INT-JECSE, 9042-9043 (2022)

TYPES OF CYBERCRIME IN BANKING SECTOR

Cybercrime in the field of banking sector can be divided into distinct categories, each having peerless features and way of enforcement. Several prevalent forms of cybercrime are frequently observed within the banking sector-

Hacking

Hacking refers to the unauthorised intrusion into banking system or networks with the intent to steal sensitive data, disrupt services, or alter information. Cybercriminals employ a range of methods, including exploiting software vulnerabilities, using brute-force attacks to bypass passwords, or deploying malware to gain unauthorised control over banking infrastructure.

After gaining access, hackers may extract confidential customer data, initiate unauthorised transactions, or severely disrupt banking operations.

                                                                                                                                                                      Phishing

Phishing is a social engineering employed by cybercriminals to deceive individuals into disclosing personal information, including passwords, credit card details, or banking login credentials. These attacks typically involve fraudulent emails or message that are designed to resemble communications from trusted institutions, such as banks.

Ransomware

Ransomware is a form of malicious software that encrypt a victim’s data and demand payment in return for the decryption key. In the banking sector, such attack can be especially damaging, as they may interrupt essentials banking functions, restrict customer access to account, and result in substantial financial losses.

Cybercrime may target banks directly or deploy ransomware to attack customer, demanding payment in return for restoring access to their account or data.

Data breaches

Data breaches take place when cybercriminals unlawfully access a bank’s database and extract confidential information like customer names, addresses, social security numbers, and account details. Data breaches can result in significant repercussions for both financial institutions and their customers, including monetary losses, identity theft, and reputational harm to the bank.

These incidents often steam from weakness within the bank’s security infrastructure or from insider threats, such as employees who have unauthorised access to sensitive data.

ATM skimming

ATM skimming is a form of cybercrime in which criminals install a device on an ATM to collect data stored on a customer’s debit or credit card. These skimming devices may also be used to record the customer’s PIN as it is entered into the machine.

After obtaining the stolen information, cybercriminals can produce fake cards and withdraw funds from the victim’s account. ATM skimming remains a prevalent issue in the banking industry, especially in the areas where older ATM machine lack modern security enhancements.

Insider Threat

Insider threat involves cybercrimes carried out by individuals with legitimate access to bank’s system, including employees, contractors, or third-party service providers.

Such individuals may exploit their authorised access steal sensitive information, carry out fraudulent transactions, or disrupt the bank’s operations. Insider threats are especially difficult to identify and mitigate, as the offenders typically have valid system access and are often well-acquainted with the bank’s security protocols. (5) (Agrawal, 2024)

4.  Mahesh Pratap Singh Shekhawat & Dr. Priyanka Joshi, Cyber Crime in banking sector:  An overview, 14 INT-JECSE, 9402-9403(2022)    

5. Aishwarya Agrawal, cybercrime in the banking sector, Lawbhoomi.com, June 19, 2025,

Cyber Crime in the Banking Sector

          IMPACT OF CYBER CRIME ON BANKING SECTOR

Losses in money: cyber attackers often result in substantial financial losses for bank These losses may rise from direct monetary theft, costs associated with mitigating the attack, legal expenses, regulatory penalties, and compensations provided to affected customers.

Damage to reputations: cyber attackers can significantly damage a bank’s public image. When customer’s lose confidence in the institution’s ability to safeguard their financial assets and personal information, it can lead to a decline in client trust and loyalty. Additionally, negative media coverage may deter potential customers from engaging with the bank.

Disturbance in operations: cyber attacker, especially those involving ransomware or distributed denial of service attacks, can disrupt banking operations. Such disruptions may hinder business continuity, cause inconvenience to customers, interrupt transactions, and limit access to online services and routine banking activities

Regulatory sanctions: Banks are required to adhere to stringent cybersecurity and data protection regulations. A successful cyberattack may expose non-compliances with these standards, potentially resulting in substantial financial penalties and legal proceedings initiated by regulatory bodies.

Higher security expenses: In the attempt of a cyberattack, banks often need to invest heavily in enhancing their cybersecurity framework. This includes conducting comprehensive security audits, implementing advanced protective measures, upgrading existing systems, and providing additional training for staff. [6]

(govardhan, 2024)

  • Dr. C. Mallesha & M. Goverdhan, A study of cybercrime on banking sector in India,11, IJIRT,2076-2080(2024)

SUGGESSTION

  1. Enhance Cybersecurity Frameworks through Policy and Technology Integration

It is imperative for banking institutions to adopt a robust cybersecurity framework that integrates both regulatory compliance and cutting-edge technological solutions. This includes aligning internal controls with global standards such as ISO/IEC 27001 and the NIST Cybersecurity Framework’

  •  Implement Comprehensive Cyber Risk Assessment Models

Regular and systematic risk assessments should be institutionalized to identify vulnerabilities in digital infrastructures. Banks must develop and update cyber risk management models that evaluate threat exposure, system resilience, and recovery capabilities.

  • Promote a Cyber-Aware Organizational Culture

Continuous professional development and capacity-building initiatives for employees are essential. Banks should implement structured cybersecurity training programs that emphasize awareness, vigilance, and adherence to best practices.

4. Invest in Real-Time Threat Detection and Response Mechanisms

Financial institutions should adopt real-time threat intelligence and automated incident response tools to promptly detect and neutralize cyber threats. The deployment of AI-powered security analytics can significantly enhance situational awareness.

5. Establish a Centralized Cybersecurity Operations Centre (CSOC)

Setting up a dedicated CSOC enables 24/7 monitoring, incident detection, forensic analysis, and coordinated response across all branches and digital platforms, ensuring proactive threat management.

6. Strengthen Regulatory Oversight and Inter-Institutional Collaboration

Collaboration with national regulatory bodies, such as central banks or cybersecurity agencies, is vital for information sharing, compliance enforcement, and coordinated responses to systemic cyber threats.

7. Develop a Resilient Data Backup and Business Continuity Strategy

Banks must establish comprehensive data backup systems and disaster recovery protocols to ensure continuity of operations in the aftermath of a cyberattack. Emphasis should be placed on minimizing data loss and service disruption.

            8. Incorporate Cybercrime Awareness into Customer Education Programs

Given the increasing use of digital banking, customer-facing awareness campaigns about phishing, identity theft, and secure online behaviour are crucial in mitigating external social engineering attacks.

           9. Undertake Regular Penetration Testing and System Audits

Simulated cyberattacks and rigorous system audits should be routinely conducted to assess the efficacy of existing security measures and detect latent vulnerabilities.

           10. Adopt Ethical and Legal Approaches in Digital Governance

Ethical data governance, adherence to data protection laws such as the GDPR, and transparent reporting of breaches are essential for maintaining public trust and ensuring legal compliance.

conclusion 

Cybercrime in the banking sector is a complex and evolving threat that requires a proactive and comprehensive approach to address. The impact of cybercrime on the banking sector is significant, leading to financial losses, operational disruptions, reputational damage and systemic risks.

To protect against cyber threats, banks must implement strong security measures, invest in employee training and collaborate with law enforcement and regulatory bodies. In addition, banks must educate their customers about potential threats and provide them with the tools and resources they need to protect their accounts. By adopting these strategies, banks can reduce the risk of cybercrime and ensure the security and integrity of their operations in the digital age.                 

Manisha

Shri Ramswaroop Memorial University, Lucknow