ICICI Bank, AXIS Bank and HDFC Bank involved in money laundering

Posted on March 14, 2013 by Vijayashankar Na

A sting operation by  an organization called Cobrapost has revealed that three Banks namely ICICI Bank, Axis Bank and HDFC Bank are involved in systematic money laundering operations.

What is important now is not to just close this incident as an aberration. If it has been the policy of the bank to commit money laundering offences, the CEOs of these Banks must be made answerable.

Related Article

In a release sent to the media,  Cobrapost alleged that these money laundering practices are part of a standard set of procedures within these banks. 

* These money laundering services are being openly offered to even walk-in customers who wish to launder their illicit money;
* A variety of options for laundering ill-gotten cash are being offered brazenly;
* These money laundering services are being offered practically as a standard product across the country.”

More information at cobrapost.com

Naavi

Posted in Bank, Cyber Crime | Leave a comment

Mobile Payments-FTC workshop

Posted on March 14, 2013 by Vijayashankar Na

The Federal Trade Commission (FTC) of USA which oversees consumer protection requirements has come up with a document on mobile payments. The document discusses aspects such as concerns on third party billing in carrier bills, data security, dispute resolution and other issues which are extremely relevant even in the Indian Context.

A copy of the report is available here

In India TRAI is the only organization which occasionally speaks of consumer concerns. However, like in the Banking sector where commercial banks often ignore the RBI guidelines, mobile companies are too powerful to be bothered by the consumer friendly guidelines of TRAI since the enforcement is weak.

There is therefore a need for a Netizen body to track the anti consumer activities of mobile companies and spur corrective action.

Naavi.org has taken an initiative through “All India Forum of Netizens” to create a list of demands on behalf of the Netizens of India to be sent to various political parties to be incorporated in their manifestos.

A draft will soon be put up both at naavi.org and aifon.org.in for public comments.

Naavi

Posted in Bank, Cyber Crime, Cyber Law | Leave a comment

Advertising of Health Products-New FTC guidlines

Posted on March 14, 2013 by Vijayashankar Na

FTC (Federal Trade Commission) of USA has announced a new “Advertising Guidelines” applicable for endorsement of health products. Essentially this applies to advertisements which say in effect “I have used this product and found it useful”. It affects advertisements using celebrities to endorse products.

The guideline require that a disclosure to me made that the results claimed are “not to be considered as typical” and are relevant for compliance of HIPAA-HITECH by  media owners.

Additionally, a blog who writes positively about a product is also considered as an “Endorsement” if he receives cash or in-kind payment to review a product.

The guidelines are reasonable and are issued in consumer interest. Probably it will bring more responsibility on the advertisers.

The principle is normally adopted as “Journalistic Ethics” in the financial circles. Some times a regulatory organization such as SEBI may impose penalties on any “Pump and Dump” attempts where endorsements are made for monetary considerations are prima facie fraudulent.

Endorsements in health products is mostly prevalent even in India through TV channels and products are brazenly over hyped. Probably the FTC guidelines may trigger some thoughts in India too about “Appropriate Disclosures” (Not banning) for advertisement of health products.

Naavi

Posted in Cyber Crime, Cyber Law | Leave a comment

Modus Operandi of a Phishing Fraud

Posted on March 12, 2013 by Vijayashankar Na

The investigations by the Mulund Police about the Rs 1 crore phishing fraud that occurred in Mumbai have brought to public attention the modus operandi of the fraudsters.

The police have arrested two brothers in Delhi who have revealed the following during investigations.

Mr Fajroor Rehman Khan the elder of the brothers is a 26 year old college drop out who is an expert in Software. He learnt the “art of e-fraud” and formed a gang in 2008. He improved upon the old Nigerian tactic of sending an e-mail and asking the recipients to visit the bank’s website. He considered this method as “Out dated” and took the “Trojan Route”.

He did some research and found chose a “Trojan Virus” and sent mails to around 5000 persons asking if they needed “Expert help” to update their systems. The moment the recipient clicked on the e-mail, the trojan got activated and enabled Fajroor to monitor the activities of the victim. Using the technique he stole the credentials of the current account of Mr Ankur Korani, a director of a cosmetic company and using the password and user name he accessed the account and transferred Rs 1 crore to 12 accounts in 45 minutes.

It is to be noted that with this “Trojan Approach”, Banks cannot accuse the customers of being negligent in passing on the credentials to a fraudster which they used to do in the older technique.

Secondly, the usual security message which Banks provide on their website stating “We donot ask your password” is of no consequence since a “Trojan” is dropped with a spam mail of any subject line or content.

Banks should therefore harden their system so that an analysis of the pattern of past transactions should reveal such suspicious transactions. In the instant case, transfer of Rs 1 crore within 45 minutes to 12 different unknown persons across the country is a give away.

The fact that PNB did not have a system of risk analysis from the transaction pattern is a matter to be taken note off.

It must also be noted that there is an inherent risk in the browser based log in with password authentication which has no legal or regulatory support and sooner the Banks recognize the truth, better it is for bank customers.

TOI Article

Naavi

Posted in Cyber Crime, Cyber Law, ITA 2008, Netizen's Forum | Leave a comment

Copyright Violation, Mumbai Police raid Chennai company

Posted on March 12, 2013 by Vijayashankar Na

In an interesting IPR case, Mumbai police are reported to have raided and seized some evidence from the premises of Sundaram group company in Chennai. Report in IE

The issue relates to an interpretation of the licensing term in a software which the Mumbai firm contends expired after 7 years and the Chennai firm contends has resulted in transfer of ownership.

Naavi

Posted in Uncategorized | Leave a comment

Maharashtra Adjudicator awards 45 lakhs compensation against PNB

Posted on March 6, 2013 by Vijayashankar Na

Adjudicator of Maharashtra (Mr Rajesh Aggarwal) has reportedly awarded a compensation of Rss 45 lakhs in a phishing case against PNB.

As per the copy of the order available on the website of DIT, Maharashtra, out of the total amount of Rs 80.10 lakhs transferred out of the account, about Rs 37,64,675/- had been frozen in the beneficiaries accounts and recovered.

After the series of decisions in Chennai this is another welcome decision to the Bank customers. PNB which has several pending cases including a 1.65 crore case in Delhi must be making necessary provisions to meet the liabilities.

This is reported to be one of the 13 cases in which the Adjudicator has passed orders against 9 different Banks, 4 telecom companies and 2 mobile recharge portals.

Naavi is happy that the principle that Banks are liable for Phishing established with the S.Umashankar Vs ICICI Bank is now getting wider acceptance. This is an extremely heartening development.

Other Cases in Maharashtra

Report in Financial Express

Naavi

Posted in Bank, Cyber Crime | Leave a comment