Name :- Bibek poudel

Summary
This is the case of Nepal Bank’s related to cyber security issue.
In this case, 17 years old grade 12 student has made a fake
website of ABC Bank. He made that fake website for the illegal
hacking purposes. First he sent the message to the customer to
change their security code by sending them a link of fake
website. Whenever the customers enters their id and the
password, he immediately got the every details of the customers
credentials. 17 years old hacker withdrew the money from the
customers account.

In another case, NBIL Bank customers e-banking accounts has

been disabled and got a link to enable their e-banking account
on. After getting the customers password, millions of money has
been stolen. When the client complaint about the money loss,
bank inquired and found that money has been transferred to
the three different client of NBIL Bank from different places.
they came to know that they maintained the clients account
from the different branches. One has withdrew the money about
4lakhs as soon has he received money, another has withdrew
money through ATM from daily basis, and another account has
been frozen before he withdraw. Third person came to
interrogation by CBI and the money has been returned to that
client. CBI said that the ip address of that email was from the
outside of the country.

In another case, customers are getting email by telling them to

change their security code of e-banking account. Also the
customer is the employee of XYZ Bank. He did research and
found that its a fake link which is sent to the customers so he
immediately the issue towards cyber crime cell of metropolitan
police range at Hanuman Dhoka. They knew that its a phishing
and how the customers are fall into it unknowningly. Cyber
crime cell police has immediately organised a meeting and told
them to use strong and genuine software for their betterment.
They also said that to aware public. In this era due, to more
increment of the, Central Bank has introduced a IT guidelines
for the bank and the finance institute for their IT related risk.

Ans(a): In the 1st incident, hacker has made a fake website.

Customer has been send a link to change their password,
whenever they click that link customers redirect to the fake
website. In this way phishing attack is done.

In the 2nd incident, here also hacker has sent a link to the
customers to enable their e-bank that was disabled. Whenever
the clients try to enable e-banking through that link with their
id and password hacker got all the credentials and loss the
huge amount of money.

In the 3rd incident, clients are getting fake link to the clients,
when the client inquired about that link and immediately took
an action. That case was hand overed to the Cyber Crime Cell.
The investigation has done and took an one person for an
interrogation. After all the money has been returned to that
client.

Ans(b): XYZ Bank has shown the more responsiveness in that

case. When the all customers the customers received a link to
change the security. Client as well as the employee of that bank
has inquired and knew that it wasn’t them to sent link to the
customer. Immediately they took an action against that crime.
Due to the increment of cyber crime and phishing attack like
that police said to use strong software for their online handling
and aware the public. Central Bank also make some IT
guidelines on their system so that every bank should follow the
guides.

NBIL Bank also has took an action against the crime. Hacker has
sent link to enable e-banking system for the clients. After
getting all the credentials he withdrew more than millions of
money from the client accounts. After all they inquired and took
a one person under the CBI interrogation and returned all the
money to the respective client. But after this case they didn’t
took priority about such cases even they didn’t aware the
customers.

Ans(c): In this era, no data is safe but inorder to protect the

every credential first of all all the bankers must use the genuine
software instead of crack. Whenever the clients are getting
unknown link, Banks should be more responsible. Many fake
websites has been made, so they must check either fake
websites has made or not.
Whenever Banks sent link to the customer, they must inform
clients through call also. Many policies has been made by the
Nepal Rastra Bank so that policies must be followed by the
every bank for the security purposes.