 | « Back to article | Print this article |
The number of cyberfraud cases has skyrocketed from 2,677 in 1999-2000 to 29,082 in FY24 -- more than a 10-fold increase.
The RBI pegs digital payment frauds at Rs 1,457 crore in FY24, up more than five times in a year.
It's not just the number of frauds. What's alarming is the growing sophistication of the fraudsters, exposing the vulnerabilities within the financial system, observes Tamal Bandyopadhyay.
Retired schoolteacher Eloise Parker has a lonely life but shares a warm friendship with Adam Clay, who lives in her barn and works as a beekeeper.
One day, Parker falls for a phishing scam that bankrupts her, costing her her life's savings, including the $2 million-plus from the charity she runs.
Devastated, she kills herself with a gun. Clay discovers her body, and the FBI agent, who is Parker's daughter, arrests him.
After being cleared and released, Clay contacts a mysterious group called the Beekeepers for information that will help him find the people behind the phishing attack on Parker. The search leads to a call centre.
Want a glimpse into the world of cybercrime? Watch The Beekeeper, a 2024 American action thriller film.
Closer home, there is Jamtara -- Sabka Number Ayega, an Indian crime drama television series that gives us a peek into the world of social engineering.
It was released on an OTT platform in January 2020. The second season came out in September 2022, and the audience lapped it up for the latest trends in cybercrime it drew attention to.
Cybercrime is evolving fast.
On January 9, The Times of India reported that the Kolkata police had arrested 11 people in connection with a nationwide crackdown on a digital arrest scam.
With this arrest, they claimed to have resolved over 930 complaints from across the country.
In the October episode of Mann Ki Baat, Prime Minister Narendra Modi raised an alarm over the rapid rise in cases of digital fraud across India.
Going by data provided by the government in Parliament, the number of cyberfraud cases has skyrocketed from 2,677 in 1999-2000 (FY20) to 29,082 in FY24 -- more than a 10-fold increase.
The Reserve Bank of India's latest annual report pegs the digital payment frauds at Rs 1,457 crore (Rs 14.57 billion) in FY24, up more than five times in a year.
It's not just the number of frauds. What's alarming is the growing sophistication of the fraudsters, exposing the vulnerabilities within the financial system.
India is not unique when it comes to cybercrime. On November 11, Singapore introduced the Protection from Scams Bill in parliament.
With the passing of this bill on January 7, the 'Lion City' has become the first country in the world to give police the power to control the bank accounts of scam victims who do not keep their eyes open.
Armed with the power to issue restriction orders, the police in Singapore will be able to restrict transactions in an individual's bank account such as money transfer, use of ATM facilities and credit facilities as well as over-the-counter transactions.
The police can issue a restriction order to a bank if they believe the victim will transfer money to the scammer. The objective is to protect the victim.
Singapore is losing around $2 million to scams daily. In the first half of 2024, more than $385.6 million was lost in 26,587 cases reported in Singapore; in 86 per cent of all reported scams, the victims had made voluntary transfers to the scammers.
In August, before this bill was introduced, Singapore's largest business e-mail compromise (BEC) scam was busted, leading to the recovery of $41 million.
This is possibly the first instance of international cooperation arresting cybercrime.
A commodity firm in Singapore fell victim to a sophisticated fraud scheme on July 19 last year.
Cybercriminals impersonated a supplier and tricked the firm into transferring the funds to a fake bank account.
The police sprung into action. With the intervention of Interpol's Global Rapid Intervention of Payments (I-GRIP) tool, a large part of the stolen funds were quickly recovered, making it the largest recovery ever.
The I-GRIP programme, which has been instrumental in intercepting hundreds of millions of dollars in illicit funds, is now in the spotlight.
The programme was launched in 2022 specifically to stop financial cybercrimes.
It's a rapid-response system that enables law enforcement agencies across Interpol's 196 member countries, including India, to quickly intervene in financial transactions suspected of being linked to criminal activities.
When a suspicious transaction is identified, I-GRIP facilitates the rapid exchange of critical information, allowing authorities to halt the transaction and prevent the funds from being transferred to the fraudsters.
This process involves close collaboration between financial institutions and law enforcement agencies, and ensures that the right information is available at the right time to effectively combat financial crime.
The I-GRIP mechanism is a critical tool in Interpol's arsenal.
This stop-payment mechanism facilitates cooperation between countries, enabling authorities to trace, intercept, and freeze the proceeds of crimes across borders.
In the case of the $42.3 million BEC scam in Singapore, the police's swift request for assistance through I-GRIP played a critical role in the recovery.
While Singapore has empowered its police to control the bank accounts of scam victims, banks in India are often helpless when it comes to dealing with mule accounts that are being used to siphon off money at stage two.
Once the fraudsters are successful in drawing a big chunk of money from an account, the amount is typically split into small parcels, and it then flows into the mule accounts.
The mule account holders withdraw the money and pass it on to unknown fraudsters, while keeping a small 'commission'.
Since such accounts are KYC-compliant, banks find it difficult to suspend them.
The Centre has frozen around 450,000 'mule' bank accounts in the past year, according to a report in The Indian Express.
These accounts are typically used to launder money drawn from cyberfraud.
While such accounts are spread across various banks, they have been identified to be in high concentration in the State Bank of India, Punjab National Bank, Canara Bank, Kotak Mahindra Bank, and Airtel Payments Bank.
Officials of the Indian Cyber Crime Coordination Centre, which reports to the ministry of home affairs, conveyed this to the prime minister's office during a meeting where the shortcomings of the banking system were discussed.
They also highlighted that fraudsters are nowadays withdrawing payments from such 'mule accounts' -- which are usually created using KYC documents of another person -- through cheques, ATMs, or digitally.
Banks have reported a new kind of fraud in recent years -- chargeback scam.
Fraudsters raise chargeback disputes under the category 'goods and services not received' and claim refunds from the acquiring banks for transactions that never took place.
Typically, one buys some stuff from a provision store, pays through a payment app and then raises a dispute with his own bank (issuer bank) which, in turn, refers it to the merchant acquiring bank through the network.
There were reports of thousands of chargeback disputes raised by the 'customers' in a northern state in 2023.
All of us are now keenly waiting for the digital payments intelligence platform, which the RBI has proposed to set up to mitigate frauds and payments fraud risks.
A committee, headed by A P Hota, former MD and CEO of the National Payments Corporation of India (NPCI), is examining the aspects of setting up the digital public infrastructure for the platform.
Through this platform, the RBI will be able to provide real-time intelligence to identify suspicious and fraudulent transactions, with the ability to stop and recover.
This is what the industry needs at the moment, something on the lines of what Singapore has done.
NPCI also runs a fraud management system, which works in real time.
It's not an easy task since the fraudsters are always ahead of the victims and the modus operandi evolves fast.
Earlier, greed was the main reason a person fell prey to cyberfraud; now, it is fear.
The key to fighting this is mass awareness.
To tackle cybercrime, India needs to repeat what it did for financial inclusion -- launch a nationwide campaign.
Tamal Bandyopadhyay is an author and senior advisor to the Jana Small Finance Bank Ltd. His latest book is Roller Coaster: An Affair with Banking.
Disclaimer: These are Tamal Bandyopadhyay's personal views.
Feature Presentation: Aslam Hunani/Rediff.com
