1. Home
  2. WhatsApp Pay may put Indian digital banking at risk: Experts

WhatsApp Pay may put Indian digital banking at risk: Experts

Agencies
November 8, 2019

After WhatsApp accounts of 121 Indians were compromised by the Israeli spyware Pegasus, experts have warned that the payment feature the Facebook-owned platform is planning to launch in India may put the digital banking system at risk.

"WhatsApp payment needs to be seen with microscopic eye, primarily because in payment you will be dealing with sensitive personal data and cyber security is going to be an essential building block component for WhatsApp to demonstrate its due diligence," Pavan Duggal, one of the nation's top cyber law experts, told IANS.

The Ministry of Electronics and Information Technology (Meity) has already expressed dissatisfaction over the manner WhatsApp communicated about the compromised accounts.

The piece of NSO Group software called Pegasus allegedly exploited WhatsApp's video calling system by installing the spyware via missed calls to snoop on 1,400 users globally. The devices were compromised with just a WhatsApp video call.

In May, WhatsApp, which has 400 million users in India, urged its 1.5 billion global users to upgrade the app after discovering the vulnerability.

"WhatsApp's recent operations have shown that it's difficult for the government to get information from it. WhatsApp is an intermediary under the Information Technology Act and is mandated to exercise due diligence under the law. But it has failed to do due diligence," Duggal said.

"You should not be in a hurry to grant new licences or permission to WhatsApp without being satisfied with its adherence to cyber-security norms, international best practices and Indian laws," he said.

The Facebook-owned company is learnt to have countered the government charge that it didn't inform it about a privacy breach on the messaging platform. WhatsApp didn't even comply with the data breach notification law in India, Duggal said.

"It (WhatsApp) didn't follow reasonable security practices as mandated in Section 43A of the IT Act, 2000. In fact, it abetted the crime of un-authorised access too. Granting WhatsApp pay licence should be given a second thought by the Reserve Bank of India," said Prashant Mali, cyber lawyer at Bombay High Court.

In light of the recent hack, the government, the RBI and the National Payments Corporation of India (NPCI) is reportedly evaluating the risk of allowing social media apps into the digital payment ecosystem.

"With the government, the RBI and the NPCI planning to evaluate the risks involved in making payments via social media apps and services, the security of the UPI payment infrastructure on WhatsApp Pay has been rendered under a cloud of vulnerability," said Salman Waris, Managing Partner at TechLegis Advocates & Solicitors, a law firm.

The RBI revealed in an affidavit in the Supreme Court earlier that WhatsApp had not complied with the data localisation norms. In an April 2018 circular, the RBI stated that the data of any payment banking system have to physically located in India.

"The history of WhatsApp has shown that it's not cooperative with the government in sharing of information. If financial information is compromised, it will not only have an impact on users, but it can also have an impact on the sovereignty and security of India," Duggal said.

The government must go slow till the time WhatsApp demonstrates compliance to Indian law and showed that the platform was secure, he said.

"Because almost every phone user in India is on WhatsApp, it's all the more important for the government and the RBI to ensure that WhatsApp not only complies with the parametres of cyber security and data localisation norms, but also the IT Act and the rules and regulations thereunder.

"If WhatsApp doesn't comply with the data localisation norms, rules and regulations of the IT Act, then there is no question of granting new permission," Duggal said.

In a statement, a WhatsApp spokesperson said that safety and security of users remains the platform's highest priority.

"In May, our security team caught and stopped a cyber attack designed to send malware to mobile devices. Unable to break end-to-end encryption, this kind of malware abuses vulnerabilities within the underlying operating systems that power our mobile phones," the WhatsApp spokesperson said.

"Technology companies are constantly working to stay ahead of these kind of challenges through updates and patches. The safety and security of our users remains our highest priority, which is why in May we blocked the attack and have taken action in the courts to hold NSO accountable," the statement added.

Facebook filed a lawsuit against Israel's NSO Group last month. According to Facebook, the NSO Group violated laws, including the US Computer Fraud and Abuse Act.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
November 11,2024

birensingh.jpg

The Manipur Kuki MLAs have released a statement calling out Solicitor General Tushar Mehta's 'lies' in the Supreme Court. In a joint statement, the MLAs, including those from the Bharatiya Janata Party, said they had not had any meeting with the Chief Minister since May 3, 2023, nor did they intend to meet him in the future as “he was the mastermind behind the violence”.

As per the MLAs, the SG lied about state CM N Biren Singh speaking to Kuki MLAs to control the situation there, in order to halt a Supreme Court probe into the leaked tapes which allege that Singh has been complicit in the violence that broke out between Kukis and Meitis there.

"We...clarify that we have never had any meeting with Chief Minister, Shri N. Biren Singh since May 3, 2023, nor have any intention to meet him in future as he is the mastermind behind the violence and ethnic cleansing of our people from the Imphal valley, which is continuing till today, the latest being the brutal killing and burning of Mrs Zosangkim Hmar on November 7, 2024," the letter read, while condemning the recent 'barbaric' killing of the woman there, and noting the SG's assertion is 'tantamount' to misleading the top court.

“We, the undersigned ten MLAs, have come to know that during the Supreme Court hearing held on November 8, 2024, the Solicitor General of India submitted that ‘CM is meeting all Kuki MLAs and trying to bring the situation down to get peace’. In this connection, we hereby categorically state that this submission is a blatant lie and tantamount to misleading the Hon’ble Supreme Court of India,” the statement said.

The Supreme Court, while hearing a petition by a Kuki organisation, asked that it submit audio tapes to substantiate its claim that the Chief Minister was instrumental in inciting and organising violence in the northeastern State.

Solicitor-General Tushar Mehta orally informed the court that the Chief Minister was meeting all the Kuki-Zo MLAs and that peace in the State had come at a huge cost.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
November 21,2024

CAKhaleel.jpg

Prominent NRI community leader SM Syed Khalilur Rehman, fondly known as CA Khalil, passed away in Dubai on Thursday at the age of 86 after a brief illness.

Khalil had been admitted to Aster Hospital in Mankhool on Tuesday after experiencing severe leg weakness. Despite the best efforts of the medical team, he succumbed to a double heart attack that worsened his condition, his son Rais Ahmed confirmed.

The news of his passing has sent waves of grief across communities, particularly in his hometown of Bhatkal, Karnataka, where he was a celebrated figure. Tributes have been pouring in on social media, highlighting his significant contributions to international trade, social service, and education.

A Legacy of Leadership and Service

A chartered accountant by profession, Khalil was a founding member of the Dubai chapter of the Institute of Chartered Accountants of India (ICAI), where he served as chairman from 1987 to 1994. His illustrious career included key leadership roles, such as general manager of Khaleej Times, group executive director of the Ilyas and Mustafa Galadari Group, and vice-chairman of the Jashanmal Group of Companies.

He also chaired Maadhyama Communications and Sahil Online, a web-based news platform, and was a director and trustee of several media companies and charitable organisations in Dubai and India.

A Champion for Education and Philanthropy

Khalil’s impact extended far beyond his professional achievements. As president and general secretary of Anjuman Hami-e-Muslimeen, he played a pivotal role in the development of educational institutions, including schools and colleges in Bhatkal and surrounding areas. His dedication to social upliftment earned him recognition from the Government of Karnataka, which honoured him with a prestigious award for his philanthropic contributions.

A Life Celebrated

The Bhatkal Muslim Khaleej Council (BMKC) recently released a documentary celebrating Khalil’s remarkable life and service to the community—a testament to his enduring legacy.

CA Khalil is survived by his family and countless admirers across the globe. His passing marks the end of an era for Indian expatriates in the UAE and beyond, leaving behind a legacy of leadership, generosity, and commitment to community service.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
November 15,2024

Udupi: The Tourism Department is planning a major eco-friendly development initiative for Kamini Island, located near the Blue Flag-certified Padubidri End Point beach, aiming to attract more visitors while maintaining environmental sustainability.

Assistant Director Kumar CU emphasized that, given the island’s proximity to the Blue Flag beach, all development efforts will center around eco-friendly practices. “We are looking to enhance the Kamini River and the island’s surroundings by adding a hanging bridge, nature trails, and eco-friendly food courts offering traditional cuisine. Visitors will also be able to reach the island by pedal boats or kayaking,” he said.

The development project is estimated to cost between Rs 3 crore and Rs 4 crore. Meanwhile, the Blue Flag beach, Padubidri, continues to see a steady flow of visitors. Vijay Shetty, manager of the beach, shared that tenders for food courts and water sports have been awarded to private parties. Recently, three new coracles have been introduced, which are proving to be a hit with visitors. Additionally, three more shelters are expected to be ready by November 20.

Shetty mentioned that the beach can now accommodate between 2,500 and 3,000 visitors daily, although footfall remains lower than other district beaches due to user fees and activity restrictions. “Initially, most visitors were from Mangaluru, but now nearly 40% come from other districts, showing a shift in the visitor demographics,” Shetty noted.

To further boost tourism and promote a healthy lifestyle, a Beach Carnival is set to take place on November 23-24, featuring the National Sea Swimming Championship and a sea marathon in collaboration with the Padubidri JCI, which is celebrating its golden jubilee. Cultural events will be held at the main beach, with some sports events taking place at the Blue Flag beach. Emphasis will be placed on making all activities environmentally friendly.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.