The central bank has asked banks to upgrade the operating systems and beef up security features in Automated Teller Machine (ATM) machines with immediate effect to prevent frauds.
Banks have to complete upgrades with the latest operating systems by June 2019.
"The slow progress on the part of the banks in addressing these issues has been viewed seriously by the RBI. The vulnerability arising from the banks' ATMs operating on unsupported version of operating system and non-implementation of other security measures, could potentially affect the interests of the banks' customers adversely, apart from such occurrences, if any, impinging on the image of the bank," the RBI said in a release.
Most of the machines are running on Windows XP which cannot run many of the sophisticated security measures. Navroze Dastur, managing director for India and South Asia at NCR Corporation, said, "Most of the ATMs are running on Window XP where advanced security programmes cannot be loaded. Banks were going slow in upgrading the systems."
RBI has given timelines to banks so that new operating systems and security features can be installed. The central bank has also asked a copy of the circular may be placed before the Board of Directors at its ensuing meeting, along with the proposed action plan for implementation of these measures.
Banks have to submit a Board-approved compliance or an action plan detailing the implementation plan by July 31, 2018.
The progress made in implementation of these measures should be closely monitored to ensure meeting the prescribed timelines, failing which would invite supervisory enforcement action. Banks have to implement security measures such as BIOS (basic input/output system) password disabling USB ports, disabling auto-run facility, applying the latest patches of operating systems and other software by August 2018. Banks will also have to implement anti-skimming and whitelisting solution by March 2019.Last modified on Friday, 22 June 2018