Source: IE

Why in News?

India’s online suspect registry has saved around Rs 5,100 crore by blocking 13 lakh fraudulent transactions, and it has quickly become a key tool in India’s fight against cybercrime.

What is a Suspect Registry?

• About: Launched in 2024, the suspect registry was created based on the National Cybercrime Reporting Portal (NCRP) and developed by the Indian Cyber Crime Coordination Centre (I4C). 
  • It contains data on 1.4 million cybercriminals linked to financial fraud and other cybercrimes, which has been shared with all banks.
  • The data has been shared with all banks and is accessible to States, UTs, and central investigation and intelligence agencies
• Objective: The registry helps banks and financial institutions verify customer credentials and monitor transactions to suspected accounts in real time. 
  • Using data from the NCRP, it strengthens fraud risk management and flags potential cybercriminals.
• Need for Suspect Registry: India loses over Rs 1,000 crore every month to cyber fraud. More than 80% of cybercrime cases involve financial fraud.
  • The rising scale of digital transactions demands stronger fraud risk management and real-time monitoring.
• Impact: As of December 2024, over 6.1 lakh fraudulent transactions worth around Rs 1,800 crore were blocked. 
  • Banks froze 8.67 lakh mule accounts, 7 lakh SIMs, and 1.4 lakh devices. Since 2021, around Rs 3,850 crore in frauds have been intercepted, and  suspicious online contents were blocked under the Information Technology Act, 2000.

What are India's Cybersecurity Initiatives?

• Constitutional Context: Police and public order are state subjects. States/UTs handle crimes, including cybercrime, while the Centre provides guidance, coordination, and funding.
• Policy Mechanisms:
  • Information Technology Act, 2000: Covers cybercrime offences like phishing, smishing, and vishing with fines and imprisonment.
  • New Criminal Laws: Bharatiya Nagarik Suraksha Sanhita (BNSS), 2023, the Bharatiya Nyaya Sanhita, 2023, and the Bharatiya Sakshya Adhiniyam, 2023, address modern cyber threats.
  • National Cyber Security Policy, 2013: Aimed at protecting cyberspace, building cyber defense capabilities, reducing vulnerabilities, and strengthening national digital security.
• Institutional Mechanisms
  • Indian Cyber Crime Coordination Centre (I4C): Attached office under MHA for coordinated response to cybercrime.
    • The National Cyber Crime Reporting Portal (NCRP) under I4C enables the public to report all types of cybercrimes, with a major focus on crimes against women and children.
    • Cyber Fraud Mitigation Centre (CFMC) under I4C brings banks, financial intermediaries, telecom service providers, IT intermediaries and  law enforcement agencies (LEAs) under one roof for real-time action.
    • Samanvay Platform a web-based portal for cybercrime data, analytics, mapping, and coordination among Law Enforcement Agencies nationwide.
    • Citizen Financial Cyber Fraud Reporting and Management System (CFCFRMS) platform for immediate action on financial cyber fraud complaints via helpline 1930.
  • CERT-In (Indian Computer Emergency Response Team): National agency under IT Act, 2000 for handling cybersecurity incidents, vulnerabilities, and coordinated response.
    • CERT-In runs the National Cyber Coordination Centre (NCCC) for situational awareness of cyber threats and the Cyber Swachhta Kendra to detect and remove malware, offering free tools and cybersecurity guidance for citizens and organizations.
• International Cooperation: Central Bureau of Investigation (CBI) participates in Interpol-led cybercrime cooperation initiatives. 
  • The CBI is the nodal agency for G-7 24/7 network, which is a secure channel for making data preservation requests in cases related to cyber crime.
• Digital Mechanisms
  • ‘.bank.in’ Domain for Banks: Exclusive internet domain for Indian banks to reduce cyber fraud and strengthen digital trust.
  • e-Zero FIR: Converts cyber financial crime complaints above Rs 10 lakh into First Information Report (FIR) automatically.
  • MuleHunter.AI: AI tool developed by RBI to detect “mule accounts” used for transferring stolen funds.
  • ASTR: Developed by Department of Telecommunications (DoT) Artificial Intelligence and Facial Recognition powered Solution for Telecom SIM Subscriber Verification (ASTR) is used to identify suspected mobile connections taken by the same person in different names.