Two-factor authentication for all digital transactions, including UPI, is now mandatory in India, as per RBI guidelines, to enhance security and curb fraud.
Unified Payments Interface (UPI) transactions in India reached a record high in March, with 22.64 billion transactions, marking a significant increase from the previous year and highlighting the growing adoption of digital payments.
From April 1, 2026, the Reserve Bank of India's new authentication directions modernise how every digital payment you make must be verified -- and place the burden of security squarely on your bank, not on you.
OTP scams accounted for over one-fourth of all cyber frauds.
Kerala Police arrested 165 people and registered 455 cases in a statewide operation targeting cyber financial fraud, confiscating devices and disrupting criminal networks.
Kerala Infrastructure and Technology for Education (KITE) has published the 'Cyber Safety Protocol 2026' to ensure a secure digital learning environment and robust cyber defences for students in Kerala's public school system.
Mastercard and Visa are introducing passkeys that will allow users to authenticate card payments with face scans or fingerprints, eliminating the need for one-time passwords (OTPs).
5 simple ways you can protect your passwords from being stolen by hackers.
Investors should be mindful of the high volatility in cryptos: Bitcoin has fallen more than 80 per cent in past corrections.
This marks a 67% increase from the Rs 2,537 crore lost in scams in 2022-2023.
Regularly monitor your account for any suspicious activity. Keep your devices updated with the latest security patches to prevent vulnerabilities. Ensure the physical wallet you use is stored securely to avoid loss or theft.
A key feature of the new version is to identify the people transacting on its portal by linking each user ID with the person's permanent account number (PAN), followed by a two-factor authentication through mobiles and email IDs. Those who cannot complete the KYC requirements cannot use the portal.
A single security lapse could lead to complete wipe out of your crypto assets in seconds, with no recovery in sight, warns Nikhil Sethi.
Customers had complained of amounts getting withdrawn in euros overseas.
Instead of relying on technology that is not in their control, businesses should stop using SMS based OTPs and start using other software-based or hardware-based token authentication, which are in their control, says Venkata Satish Guttula.
Avoid clicking on any unknown links from strangers. Use a different, secure password for each social media account you have.
The draft rules underline security parameters that digital wallet companies, such as Paytm, FreeCharge and Mobikwik, will have to follow
The NCMC facilitates convenient travel while integrating last-mile connectivity, a must in India's extensive landscape. It enables travellers to pay for a cross-section of needs, including toll tax, retail shopping, and withdrawing money.
Reports suggest this lot could fetch the cybercriminal as much as $130 million upon sale.
Tech giant Apple has stopped accepting payments via debit and credit cards in India. Apple has stopped accepting cards for subscriptions, and purchases using credit cards issued by banks in India. Apple will also not accept payments for ad campaigns on Apple Search using credit cards issued by Indian banks. All campaigns will be put on hold from June 1.
A mobile wallet may offer discounts but allows transactions of limited amounts. And, while a bank app or internet account allows larger transactions, it might be less convenient
Don't recharge your phone at public outlets -- carry a power bank instead. Avoid clicking on links sent by 'friends'. If you get into an online sexual encounter with a stranger and get blackmailed, refuse to pay up.
Mutual funds have ratcheted up Rs 53,700 crore (Rs 537 billion) through new fund offers (NFOs) in 2022 until November, against Rs 1 trillion in Calendar 2021, notwithstanding the number of launches this year eclipsing the 2021 tally. Industry insiders cite the absence of launches in popular categories as the reason behind lower collections this year. Typically, only NFOs in popular categories from major fund houses rake in the moolah.
Open loop pre-paid cards come with a two-factor authentication. One for ATMs and PoS transactions, and the other for online transactions
Multiple levels of integrations with the bank servers are required for enabling transactions.
Since payment alternatives such as UPI, e-wallets and USSD - based mobile banking through different platforms are directly or indirectly linked to the user's bank account one needs to be extra careful to keep hackers at bay, explains Adhil Shetty, CEO, BankBazaar.
'In restaurants, the waiter takes your card and then comes back with the machine. Don't allow that.' 'Let him come to you with the machine and then enter the card and the PIN yourself.'
However, the facility will be allowed on a need basis and can be used only in "fusion mode", which means people can use it only along with other existing means of authentication.
It is suggested that you get your SIM locked with which the wallet account is mapped.
Bourses chiefs say, they are keeping a constant vigil to thwart any attempt to make undue gains through the markets.
The country's cyber security agency CERT-In has advised Facebook users to strengthen their account privacy settings after a recent global 'data scraping' incident in the social media platform affected about 61 lakh Indians.
Being distributed through a fake Flash Player app, the malware is designed for stealing login credentials, hijacking SMSs, uploading contact lists and SMSs to malicious servers, reports Romita Majumdar.
Every online user must put these additional security layer in place to prevent theft of their online identities and vital information like user IDs and passwords
Private sector lender ICICI Bank on Monday launched a facility which allows account-holders to transfer funds through Twitter.
The IMPS platform has 28 banks under it and account holders of any of these banks can use the newly launched service, Sharma said, adding that there will be no charges for either sending or receiving the money.
Apart from mobile apps, 611 websites with the .in domain in the country were also found to be vulnerable, the Trend Micro survey reveals.
WhatsApp says business profiles verified by it will carry a green badge, similar to how parent Facebook verifies businesses with a blue tick.
Recently, an Air India flyer sent a legal notice to the airline seeking damages of Rs 30 lakh for the breach of personal data of 4.5 million passengers, including her husband and herself. Air India had informed the complainant of the data leak a month earlier, after it emerged that its passenger service system provider fell prey to a cyberattack in February. However, in the absence of a data protection law, India lacks a mechanism for compensation or grievance redress of consumers in such cases, say experts. Advocate Virag Gupta, a New Delhi-based cyber law expert, explains that a legal notice is a good beginning in the Air India case, but it raises many questions. These include whether sensitive personal information has been leaked and whether the airline is responsible or not, given that a passenger service system provider was also involved.
Use a "virtual credit card" for every online transaction when you can't pay cash on delivery.
The hack may have been done by a rogue Twitter employee, or it may have been a smart hack into the Twitter system, or a social hack where someone conned Twitter's employees into giving them access,' suspects Devangshu Datta.
© 2026 Rediff.com - Advertise with us - Disclaimer - Privacy Policy - Sitemap - Feedback - About us - Terms of use - Grievances