In a major step to curb rising cyber fraud and digital crimes, the Reserve Bank of India (RBI) has announced a new initiative to introduce a dedicated domain for all banks in India. On Friday, RBI Governor Sanjay Agarwal highlighted the growing concerns surrounding cyber crimes and phishing attacks and revealed that a new domain, “bank.in”, will be launched to enhance security in online banking transactions.
Currently, cybercriminals exploit minor alterations in domain names to create fake banking websites, leading to financial fraud. Many Indian banks operate under different domains such as .co.in, .com, or .in, making it easier for fraudsters to mislead customers by creating fake but similar-looking websites. To eliminate this confusion and provide a uniform digital identity for banks, RBI has mandated the use of “bank.in” as the exclusive domain for all Indian banks. This initiative, set to be implemented from April this year, is expected to make it easier for customers to identify genuine banking websites and communications, reducing the risk of phishing attacks.
One of the major challenges faced by customers today is the difficulty in distinguishing between legitimate and fraudulent links received via emails and messages. Scammers often create deceptive links that closely resemble authentic banking websites, tricking customers into providing sensitive banking information. With the introduction of a standardized “bank.in” domain, customers will have a simple and reliable way to verify the authenticity of a bank’s website and official communications.
In addition to banks, RBI is also planning a similar initiative for other financial institutions by introducing the “fin.in” domain. This move aims to enhance cybersecurity across the financial sector by ensuring that only authorized institutions can register under these domains. The responsibility of registering and managing these domains has been entrusted to the Institute for Development and Research in Banking Technology (IDRBT), a specialized institution focused on banking technology and security.
Experts in the cybersecurity field have often pointed out that many fraudulent activities originate from misleading domain names. When customers search for a bank’s website on Google, multiple links often appear, some of which are fraudulent. These fake links lead unsuspecting users to malicious sites where they inadvertently share sensitive banking credentials, falling victim to financial scams. With a dedicated domain exclusively for banks, the RBI aims to prevent such cyber fraud and strengthen digital security across the banking sector.
This initiative marks a crucial step in RBI’s continuous efforts to enhance digital banking security, ensuring safer and more reliable financial transactions for millions of customers across India.
