1. Home
  2. WhatsApp Pay may put Indian digital banking at risk: Experts

WhatsApp Pay may put Indian digital banking at risk: Experts

Agencies
November 8, 2019

After WhatsApp accounts of 121 Indians were compromised by the Israeli spyware Pegasus, experts have warned that the payment feature the Facebook-owned platform is planning to launch in India may put the digital banking system at risk.

"WhatsApp payment needs to be seen with microscopic eye, primarily because in payment you will be dealing with sensitive personal data and cyber security is going to be an essential building block component for WhatsApp to demonstrate its due diligence," Pavan Duggal, one of the nation's top cyber law experts, told IANS.

The Ministry of Electronics and Information Technology (Meity) has already expressed dissatisfaction over the manner WhatsApp communicated about the compromised accounts.

The piece of NSO Group software called Pegasus allegedly exploited WhatsApp's video calling system by installing the spyware via missed calls to snoop on 1,400 users globally. The devices were compromised with just a WhatsApp video call.

In May, WhatsApp, which has 400 million users in India, urged its 1.5 billion global users to upgrade the app after discovering the vulnerability.

"WhatsApp's recent operations have shown that it's difficult for the government to get information from it. WhatsApp is an intermediary under the Information Technology Act and is mandated to exercise due diligence under the law. But it has failed to do due diligence," Duggal said.

"You should not be in a hurry to grant new licences or permission to WhatsApp without being satisfied with its adherence to cyber-security norms, international best practices and Indian laws," he said.

The Facebook-owned company is learnt to have countered the government charge that it didn't inform it about a privacy breach on the messaging platform. WhatsApp didn't even comply with the data breach notification law in India, Duggal said.

"It (WhatsApp) didn't follow reasonable security practices as mandated in Section 43A of the IT Act, 2000. In fact, it abetted the crime of un-authorised access too. Granting WhatsApp pay licence should be given a second thought by the Reserve Bank of India," said Prashant Mali, cyber lawyer at Bombay High Court.

In light of the recent hack, the government, the RBI and the National Payments Corporation of India (NPCI) is reportedly evaluating the risk of allowing social media apps into the digital payment ecosystem.

"With the government, the RBI and the NPCI planning to evaluate the risks involved in making payments via social media apps and services, the security of the UPI payment infrastructure on WhatsApp Pay has been rendered under a cloud of vulnerability," said Salman Waris, Managing Partner at TechLegis Advocates & Solicitors, a law firm.

The RBI revealed in an affidavit in the Supreme Court earlier that WhatsApp had not complied with the data localisation norms. In an April 2018 circular, the RBI stated that the data of any payment banking system have to physically located in India.

"The history of WhatsApp has shown that it's not cooperative with the government in sharing of information. If financial information is compromised, it will not only have an impact on users, but it can also have an impact on the sovereignty and security of India," Duggal said.

The government must go slow till the time WhatsApp demonstrates compliance to Indian law and showed that the platform was secure, he said.

"Because almost every phone user in India is on WhatsApp, it's all the more important for the government and the RBI to ensure that WhatsApp not only complies with the parametres of cyber security and data localisation norms, but also the IT Act and the rules and regulations thereunder.

"If WhatsApp doesn't comply with the data localisation norms, rules and regulations of the IT Act, then there is no question of granting new permission," Duggal said.

In a statement, a WhatsApp spokesperson said that safety and security of users remains the platform's highest priority.

"In May, our security team caught and stopped a cyber attack designed to send malware to mobile devices. Unable to break end-to-end encryption, this kind of malware abuses vulnerabilities within the underlying operating systems that power our mobile phones," the WhatsApp spokesperson said.

"Technology companies are constantly working to stay ahead of these kind of challenges through updates and patches. The safety and security of our users remains our highest priority, which is why in May we blocked the attack and have taken action in the courts to hold NSO accountable," the statement added.

Facebook filed a lawsuit against Israel's NSO Group last month. According to Facebook, the NSO Group violated laws, including the US Computer Fraud and Abuse Act.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
November 24,2025

lebanon.jpg

Israel has launched a new act of aggression on a residential neighborhood in Lebanon's capital, Beirut, killing and injuring about two dozen civilians.

The Israeli regime's military said in a statement that its forces carried out a so-called precise strike in a residential apartment in Dahiyeh in the southern suburbs of Beirut on Sunday.

The aggression targeted residential areas, killing at least five people and injuring more than 28 people, Lebanon's Health Ministry said. 

Hezbollah announced the martyrdom of senior Hezbollah commander Haytham Ali Tabatabai and four resistance fighters.

Lebanese President Michel Aoun condemned the airstrike, calling it a clear demonstration of Tel Aviv’s disregard for repeated international calls to halt violations on Lebanese soil.

“Israel refuses to implement international resolutions and all efforts aimed at ending the escalation and restoring stability,” Aoun said, urging the international community to take action to prevent further aggression.

The Palestinian Islamic Jihad movement also condemned the attack, holding the international community accountable. 

“The international community bears responsibility and continues to provide cover for these attacks as long as it does not restrain the occupiers,” said Ali Abu Shahin, a member of the group’s political bureau.

Israeli prime minister Benjamin Netanyahu’s office announced that the Israeli army carried out a strike “in the heart of Beirut."

Netanyahu reportedly approved the operation following recommendations from top Israeli security officials.

Two senior US officials commented on the Israeli strike.

The first official said that Israel did not notify Americans in advance about the attack. "We were informed immediately after the strike was carried out."

The second senior official said that the "US knew for several days that Israel was planning to escalate its strikes in Lebanon, but did not know in advance the timing, location, or target of the strike."

Speaking from the site of the Israeli strike, Lebanese MP Ali Ammar condemned the attack as part of a broader campaign of aggression that has targeted "all of Lebanon since the Washington-sponsored ceasefire."

He stated that "any attack on Lebanon is a violation of red lines; this aggression is part and parcel of the entity that targets Lebanon's dignity, sovereignty, and security of citizens."

Ammar went on to say the resistance is responding with "utmost wisdom, patience, and will confront the enemy at the appropriate time."

"Unfortunately, the enemy is emboldened to commit its aggression by voices within Lebanon that have turned themselves into tools that support its aggression," he added.

The Israeli attack on the southern suburbs of the Lebanese capital is the latest blatant violation of the ceasefire Israel signed with Hezbollah in November 2024, which was intended to end hostilities that had escalated into full-scale war.

An Israeli strike on the Ain al-Hilweh camp near Sidon in southern Lebanon late Tuesday killed at least 14 people. It wounded several others, including young students, according to the Lebanese health ministry.

The military claimed the attack targeted “a Hamas training compound” used to plan and carry out attacks against the regime -- a claim that has frequently been made without evidence.

Hamas rejected the allegations as “a blatant lie aimed at justifying the massacre,” stating it had “no military installations in the Palestinian camps in Lebanon” and that the targeted site was merely “an open sports field.”

According to Lebanese authorities, Israeli attacks have killed approximately 4,000 people and displaced more than 1.2 million residents across the country since October 2023.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
December 1,2025

hindutvaboy.jpg

Udupi, Dec 1: A horrific case of alleged rape has unfolded in Udupi, where a worker from a Hindutva organisation, previously arrested and released on bail for harassing a young woman, is now accused of waylaying and sexually assaulting her.

The arrested individual has been identified as Pradeep Poojary (26), a member of the Hindu Jagarana Vedike's Nairkode unit in Perdur.

Poojary had allegedly been relentlessly harassing the young woman, pressuring her to marry him. When she bravely stood up to him and refused his demands, she filed a formal complaint at the Hiriyadka police station. He was subsequently arrested in that initial harassment case but was later granted bail.

According to police reports, driven by the same malicious grudge, Poojary allegedly intercepted the woman again on November 29. While she was walking through a deserted area, the accused is claimed to have threatened her by grabbing her neck. When she again refused to marry him, he allegedly proceeded to rape her.

The survivor immediately informed her family about the traumatic assault. Following this, her parents lodged a complaint at the Udupi women’s police station.

Police arrested Poojary again and produced him before the court. He has since been remanded to judicial custody.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.
News Network
December 2,2025

A major upgrade in safety and monitoring is planned for Haj 2026, with every Indian pilgrim set to receive a Haj Suvidha smart wristband linked to the official Haj Suvidha mobile app. The initiative aims to support pilgrims—especially senior citizens—who may struggle with smartphones during the 45-day journey.

What the Smart Wristband Will Do

Officials said the device will come with:
•    Location tracking
•    Pedometer
•    SOS emergency button
•    Qibla compass
•    Prayer timings
•    Basic health monitoring

SP Tiwari, secretary of the UP State Haj Committee, said the goal is to make the pilgrimage safer and more comfortable.

“Most Hajis are elderly and not comfortable with mobile apps,” he said. “The smartwatch will help locate pilgrims who forget their way or cannot communicate their location.”

The wristbands will be monitored by the Consulate General of India in Saudi Arabia, similar to mobile tracking via the Haj Suvidha App.

Free Distribution and Training

•    Smart wristbands will be given free of cost.
•    Training for pilgrims will be conducted between January and February 2026.
•    Sample units will reach state Haj committees soon.
•    Final devices will be distributed as pilgrims begin their journey.

New Rules for Accommodation

Two major decisions have also been finalised for Haj 2026:
1.    Separate rooms for men and women – including married couples. They may stay on the same floor but must occupy different rooms, following stricter Saudi guidelines.
2.    Cooking banned – gas cylinders will not be allowed; all meals will be provided through official catering services arranged by the Haj Committee of India.

These decisions were finalised during a meeting of the Haj Committee of India and state representatives in Mumbai.

Haj Suvidha App Launched Earlier

The government launched the Haj Suvidha App in 2024, offering:

•    Training modules
•    Accommodation and flight details
•    Baggage information
•    SOS and translation tools
•    Grievance redressal

Haj 2026 Quota and Key States

•    India’s total Haj quota for 2026: 1,75,025 pilgrims
•    70% (1,25,000) allotted to the Haj Committee of India
•    30% (around 50,000) reserved for Haj Group Organisers

Uttar Pradesh has the largest allocation (around 30,000 seats), though approximately 18,000 pilgrims are expected to go this year. States with high pilgrim numbers include Kerala, Maharashtra and Gujarat.

Dates of Haj 2026

The pilgrimage is scheduled to take place from 24 May to 29 May, 2026 (tentative).
Haj is one of the five pillars of Islam and is mandatory for Muslims who meet the required conditions.

Comments

Add new comment

About text formats
  • Coastaldigest.com reserves the right to delete or block any comments.
  • Coastaldigset.com is not responsible for its readers’ comments.
  • Comments that are abusive, incendiary or irrelevant are strictly prohibited.
  • Please use a genuine email ID and provide your name to avoid reject.