Now Your TV acts like a Web page!

Posted on November 21, 2013 by Vijayashankar Na

It has been reported that LG Smart TV is programmed to collect the viewing habits of the users and send it back to the servers of the Company so that the data can be used to configure customized ads for display. This functionality of the TV has been revealed by certain observers in UK.

See this report

We are used to websites snooping on the users and collecting such information which is considered as a “Privacy Invasion”. Now it is necessary for LG to declare a privacy policy so that collection of information about the viewers is not considered an offence under the UK data protection Act. Further, since the company may end up processing private data, it may be necessary for the TV company to register themselves as a “Data Processor” and adhere to all the compliance requirements under the data protection act.

In the event similar data collection is practiced in India by the cable operators or the TV companies either through the Set Top box or the TV itself, the issue would come within the provisions of ITA 2008 and render the companies liable for civil and criminal liabilities for non compliance.

I hope TRAI takes note of this development.

Naavi

Posted in Cyber Crime, ITA 2008 | Leave a comment

Future of ATM banking in India

Posted on November 20, 2013 by Vijayashankar Na

Yesterday’s physical attack on an ATM customer at Bangalore should be an eye opener for all security professionals who are interested in security as well as Bank professionals who are promoting for increased use of ATM as a customer service channel. It was unfortunate that the victim of the physical attack within the premises of Corporation Bank ATM was a manager of the Bank itself. It was therefore an attack within the Bank’s premises of a Bank staff for which the Bank should take all the responsibility.

More Details

The fact that the lady remained bleeding inside the ATM for over 3 hours since the blood flowing out of the closed doors caught the attention of some school children speaks very poorly of the security situation.

It is time now for Banks to immediately close all un-guarded ATMs failing which the Police should close down such ATMs.

In the meantime a comprehensive security system has to be built for the continued use of ATMs irrespective of the costs that may be involved in the process. Such security system should include

a) Real time electronic surveillance

b) Automatic Alert generation on feed failure

c)Accountability for surveillance with a designated Bank official

d) Stronger authentication system both for entry into the premises as well as ATM usage.

I look forward to Mr Raghuram Rajan, the new Governor of RBI to start focusing on his  Bank Supervision responsibilities along with inflationary control.

I also warn some of the new Banking licensees such as the Shriram Group who have charted their plans on the increased use of technology to take note of the risks associated with unmanned banking and build in necessary security measures as part of their plans.

Naavi

Posted in Bank, Cyber Crime, RBI | Leave a comment

Cryptolocker Extortion.. How to protect?

Posted on November 19, 2013 by Vijayashankar Na

Of the many viruses that haunt us, the virus that encrypts our own files so that we have to pay a ransom to recover them is one of the most annoying. While this could be considered as a malware like any other and enter our system through the normal channels such as an infected attachment or an infected download etc., it is necessary to ensure that the usual anti virus software is supplemented with specialized tools if any protect ourselves.

Some information on such anti cryptolocker tools are available here.

More about cryptolocker

Sophos Cryptolocker removal tool

Naavi

Posted in Cyber Law | Leave a comment

Time to question safety of ATMs?

Posted on November 19, 2013 by Vijayashankar Na

So far we have been debating the cyber crime risks associated with ATMs and the need for Banks to assume responsibility. However today an incident in Bangalore has changed the perspective completely and throwing up basic questions on whether at all use of ATMs is safe for public?

For those who may not know, today morning around 7.30 am a lady who entered a Corporation Bank ATM in Bangalore to draw cash was followed by a person who closed the shutters, and attacked the lady with a sharp weapon and a pistol injuring her. He then non nonchalantly walked away. The lady is said to be out of danger but the incident has shaken up the ATM users and made ATM use completely unsafe.

Now it is necessary for customers to go to ATMs with their own arm guards since Banks cannot afford to appoint their own guards.

I demand the Governor of RBI to explain how he views this incident and what remedies he suggests. The responsibility for safeguarding Bank customers lies at the RBI Governor’s doors since RBI has been encouraging the policy of ATM use and discouraging customers from visiting Banks for cash withdrawals by charging the customers extra fees if they wish to visit the Banks.

Customers should stop using ATMs except within Branch premises to avoid such incidents.

I also suggest Bangalore police to take steps to close down any ATM which is not provided with a 24 hour guard by the Bank.

Naavi

Posted in Bank, RBI | Leave a comment

Naavi adresses at Mahajana, Mysore

Posted on November 18, 2013 by Vijayashankar Na

Naavi who is an alumni of Mahajana High School, Mysore addressed a group of Mahajana Alumni members and members of public on Saturday, the 16th November 2013 on Cyber Crimes and what public needs to do to protect themselves from Cyber Crimes.

A report in Deccan Herald, Mysore edition is available here.

Photo 1:

Photo 2:

 

Naavi

Posted in Cyber Crime | Leave a comment

Quick Action By Police Recovers Bank fraud proceeds

Posted on November 14, 2013 by Vijayashankar Na

Quick action by Police in Ahmedabad helped a Bank customer recover Rs 18 lakhs lost out of a phishing attack.

Refer Article in TOI

The incident highlights how quick action by Police and the Bank can reduce/eliminate the losses in such frauds.

Naavi

Posted in Cyber Law | Leave a comment