Connect with us

Cyber Security

No More SMS Codes: Vodafone’s New SIM-Based Fraud Defence Explained

Published

on

New Delhi: Vodafone has launched its next-generation Number Verify 2.0 service, a mobile network-based authentication technology designed to replace traditional SMS-based one-time passwords (OTPs) with a more secure SIM-based verification system.

The service has initially been introduced in Germany, the Netherlands and the United Kingdom, with Vodafone planning a wider global rollout for enterprise customers.

The new technology aims to provide businesses with a faster and more secure method of confirming mobile identities while reducing risks associated with phishing, SIM-swap attacks and OTP-related fraud.

How SIM-Based Verification Works

Unlike SMS OTP systems, where users manually enter a code received through text messages, Number Verify 2.0 verifies a mobile number directly through the telecom network.

The system checks whether the mobile number is genuinely connected to the user’s SIM card and device. The verification process works through communication between the mobile operating system, telecom network systems and secure authentication servers.

After receiving user consent, the service generates a secure verification response that can be shared with authorised businesses such as banks, retailers and digital platforms.

Vodafone said the approach provides stronger protection because it relies on network-level confirmation and SIM-based security rather than simply confirming that someone has access to a text message.

Why SMS OTP Systems Face Growing Security Concerns

SMS-based OTP authentication has been widely used for account registration, login verification and digital payments for years. However, cybersecurity experts have increasingly raised concerns about its limitations.

Traditional OTP systems may not detect whether a user’s session has been compromised through phishing websites, malware, fake apps or social engineering attacks.

Cybercriminals have also exploited OTP systems through SIM-swap fraud, where attackers attempt to transfer a victim’s mobile number to another SIM card, allowing them to intercept authentication messages.

Vodafone said businesses also face rising costs from automated fraud attempts, including artificially generated OTP requests designed to overload verification systems.

Industry Moves Towards Network-Based Authentication

Vodafone’s announcement comes amid wider industry efforts to develop stronger mobile identity solutions.

Network-based verification services are gaining attention as telecom operators explore alternatives to SMS authentication. The technology behind Number Verify 2.0 follows the CAMARA industry standard, allowing developers to integrate the service across multiple markets as operator support expands.

The company said the initial rollout focuses on Android devices, while broader device compatibility and wider operator participation will determine how quickly the technology achieves large-scale adoption.

Experts Highlight Need for Multi-Layer Security

Cybercrime expert and former IPS officer Prof. Triveni Singh said OTP-based authentication has increasingly become a target for criminals using SIM-swap attacks, phishing campaigns, malware and advanced social engineering techniques.

He said SIM-based verification could strengthen digital identity protection but should work alongside other security measures such as multi-factor authentication, behavioural risk analysis and continuous cybersecurity monitoring.

Experts believe that stronger cooperation between telecom operators, banks, fintech companies and regulators will be essential as digital payments and online services continue to expand.

While network-based verification could reduce dependence on SMS codes, cybersecurity professionals say no single technology can completely eliminate fraud risks. A combination of secure authentication systems, user awareness and proactive threat detection remains critical.

Cyber Security

Karnataka Holds State-Level Workshop to Strengthen Government Cybersecurity

Published

on

By

Bengaluru: The Karnataka government has conducted a state-level cybersecurity workshop aimed at strengthening protection of government data, improving cyber resilience and securing the state’s expanding digital governance infrastructure.

The workshop brought together more than 80 senior officials from over 30 government departments, boards, corporations and agencies to discuss strategies for building stronger cybersecurity frameworks across state systems.

Officials Discuss Future-Ready Cyber Defence

The programme was organised by the Department of Personnel and Administrative Reforms (e-Governance) in collaboration with the Centre for e-Governance, CySecK (Centre of Excellence for Cybersecurity Karnataka), and the National e-Governance Division.

Held in Bengaluru on July 10, the event featured discussions on strengthening government cybersecurity practices and improving coordination between departments.

The workshop was inaugurated by Pankaj Kumar Pandey, IAS, Principal Secretary to the Government in the Department of Personnel and Administrative Reforms (e-Governance), along with Dr Avinash Menon Rajendran, IAS, Managing Director of the Karnataka Innovation and Technology Society.

Officials highlighted the importance of protecting citizen information and ensuring secure operation of government digital platforms.

Focus on Cyber Resilience and e-Governance Security

Key sessions, including discussions on “Karnataka Cyber-Ready for the Future” and “Cyber Resilience for e-Governance,” focused on developing a coordinated approach to safeguard public digital systems.

Experts discussed challenges related to government infrastructure, including the security of the State Data Centre, Karnataka State Wide Area Network and other critical technology platforms.

Participants reviewed existing cybersecurity initiatives and explored additional measures required to strengthen protection against evolving cyber threats.

Technical Sessions Cover Advanced Security Measures

The workshop included six thematic sessions covering important areas such as:

  • Risk-based cybersecurity monitoring
  • State Data Centre security
  • Karnataka State Wide Area Network protection
  • Security Operations Centre (SOC) operations
  • State Computer Security Incident Response Team (CSIRT) mechanisms
  • Cybersecurity preparedness and response planning

Officials also discussed emerging security approaches, including secure-by-design principles, Zero Trust architecture, data classification practices and readiness for the Digital Personal Data Protection framework.

Joint Action Plan Prepared for Stronger Cyber Framework

The discussions concluded with the creation of a Joint Action Plan outlining key recommendations and implementation strategies for improving cybersecurity across Karnataka’s government departments.

The state government said the initiative reflects its commitment to developing a secure and reliable digital governance ecosystem through collaboration, knowledge sharing and continuous capacity building.

Cybersecurity experts have increasingly stressed that government institutions need proactive security measures as public services become more dependent on digital platforms and interconnected systems.

Continue Reading

Cyber Security

Is India Truly Digitally Sovereign? Mitigating Supply Chain Wars and Cyber Risks in a Volatile Geopolitical Era

Published

on

By

As digital technologies become increasingly central to economic growth, governance, and national security, India faces a critical question: how independent is its digital ecosystem in an era of global technological competition?

Despite significant progress under the government’s self-reliance initiatives, experts believe India continues to depend heavily on foreign-controlled infrastructure, cloud services, semiconductor supply chains, and artificial intelligence platforms. These dependencies could expose the country to strategic vulnerabilities during geopolitical conflicts, trade disputes, or cyber crises.

The Growing Importance of Digital Sovereignty

Digital sovereignty refers to a nation’s ability to control and secure its digital infrastructure, data, technology resources, and cyber ecosystem without excessive reliance on external entities. For India, which operates one of the world’s largest digital public infrastructures serving more than a billion citizens, the issue has become increasingly important.

From digital payments and online governance to telecommunications and defense systems, modern economies rely on uninterrupted access to digital networks and technology supply chains. Any disruption can have significant consequences for economic stability and national security.

Dependence on Global Internet Infrastructure

While India has developed robust internet capabilities, key elements of the global internet architecture remain outside its direct control. Critical internet systems, including root domain infrastructure and international routing networks, are managed through globally distributed organizations and service providers.

Although these systems are designed for resilience and reliability, policymakers and cybersecurity experts argue that strategic dependence on foreign-controlled infrastructure creates long-term risks, particularly during periods of international tension.

Foreign Cloud Providers Dominate Critical Services

Cloud computing represents one of India’s most significant areas of external dependence. Major international cloud providers continue to host substantial portions of government, financial, enterprise, and startup workloads.

While these companies have invested heavily in local data centers, concerns remain regarding data governance, legal jurisdiction, and access to sensitive information under foreign regulatory frameworks. As a result, discussions around sovereign cloud infrastructure and localized data storage have gained momentum.

Industry analysts believe stronger domestic cloud ecosystems could help reduce strategic risks while supporting India’s rapidly expanding digital economy.

Semiconductor Supply Chains Remain a Vulnerability

The semiconductor sector remains one of India’s most critical strategic challenges. The country continues to rely heavily on imports for advanced chips used in consumer electronics, telecommunications equipment, industrial systems, and defense technologies.

Global chip production is concentrated in a handful of countries, creating potential bottlenecks if geopolitical tensions disrupt manufacturing or trade routes. Any prolonged supply-chain disruption could impact multiple sectors, including automotive production, telecommunications, defense readiness, and digital infrastructure projects.

Recognizing these risks, India has accelerated investments in semiconductor manufacturing, chip design, and packaging facilities as part of its broader industrial strategy.

AI and Software Ecosystems Raise Strategic Concerns

Artificial intelligence is emerging as another area where digital dependence could shape future competitiveness. Many of the world’s most advanced AI models, operating systems, and software platforms are developed by foreign technology companies.

Cybersecurity specialists warn that excessive reliance on external software ecosystems can create challenges related to data security, technology access, and long-term strategic autonomy. Concerns also extend to cybersecurity products, digital forensics tools, and intelligence platforms that are largely sourced from international vendors.

As AI becomes increasingly integrated into governance, healthcare, finance, and defense, developing domestic capabilities is viewed as a national priority.

Rising Cybersecurity and Supply Chain Risks

The intersection of cyber threats and geopolitical competition has intensified concerns about digital resilience. Experts warn that future conflicts may not be limited to conventional military engagements but could involve cyberattacks targeting critical infrastructure, financial systems, energy networks, and communication platforms.

Supply chain attacks involving compromised hardware, software vulnerabilities, or malicious code insertion have become a growing concern worldwide. Such incidents demonstrate how interconnected digital ecosystems can be exploited to disrupt operations on a large scale.

The rapid advancement of AI-powered cyber tools has further increased the complexity of defending critical systems.

India’s Push Toward Technological Self-Reliance

India has launched several initiatives aimed at strengthening domestic technology capabilities. Government-backed programs are encouraging investment in semiconductor manufacturing, electronics production, data centers, artificial intelligence research, and cybersecurity innovation.

Projects focused on chip fabrication, sovereign AI infrastructure, and advanced computing resources are intended to reduce external dependence while building long-term strategic resilience.

At the same time, India’s Digital Public Infrastructure ecosystem—including digital identity, payment systems, and public digital services—has emerged as a globally recognized example of homegrown innovation.

Building a Resilient Digital Future

Experts argue that achieving digital sovereignty does not mean technological isolation. Instead, it involves creating a balanced ecosystem where critical technologies can be developed, secured, and maintained domestically while remaining connected to global markets.

Key priorities include strengthening semiconductor capabilities, expanding indigenous cloud infrastructure, investing in cybersecurity innovation, promoting domestic AI development, and diversifying international technology partnerships.

As India pursues its ambition of becoming a leading digital economy by 2047, reducing strategic technology dependencies is increasingly viewed as essential for economic resilience, national security, and long-term competitiveness.

The challenge ahead lies in transforming digital self-reliance from policy ambition into operational reality, ensuring that India remains secure and resilient in an increasingly uncertain global technology landscape.

Continue Reading

Consumer Protection

IRCTC Flags 14 Unauthorized E-Catering Websites Over Compliance Violations

Published

on

By

The Indian Railway Catering and Tourism Corporation (IRCTC) has intensified its efforts to safeguard railway passengers by taking action against 14 e-catering websites found operating outside approved regulatory frameworks. The move is part of a broader initiative aimed at ensuring food safety, digital security, and greater transparency across railway catering services.

According to IRCTC, the identified platforms were operating without adhering to mandatory railway catering standards. Legal proceedings have already been initiated against the websites, while authorities continue to monitor online food delivery activities linked to train travel.

Concerns Over Food Safety and Hygiene

Officials stated that investigations revealed several unauthorized operators were sourcing and supplying food from kitchens that failed to meet prescribed hygiene and quality requirements. Reported violations included inadequate sanitation practices, lack of health screening for food handlers, and non-compliance with food safety protocols required under railway catering regulations.

IRCTC emphasized that such lapses could pose serious health risks to passengers and undermine confidence in railway food services.

Passengers Urged to Use Verified Ordering Channels

To avoid potential risks, passengers have been advised to place food orders only through IRCTC’s authorized channels, including its official e-catering portal, the Food on Track mobile application, and approved partner platforms.

The corporation warned that unauthorized websites may expose users to cyber threats such as payment fraud, identity theft, and misuse of personal information. Travelers have been urged to verify the authenticity of any platform before making transactions.

Digital Monitoring and Enforcement Measures Strengthened

As part of the enforcement campaign, IRCTC has deployed advanced monitoring systems designed to identify suspicious online activity, unauthorized vendors, and unusual booking patterns in real time. Authorities believe these measures will help detect violations quickly and prevent illegal operations from expanding within the railway ecosystem.

The organization is also preparing awareness initiatives to educate passengers about safe digital practices and the importance of using verified service providers.

Regulatory Reforms Under Consideration

Industry experts note that unauthorized e-catering services create a dual challenge by jeopardizing both food quality and online transaction security. In response, IRCTC is reportedly evaluating stronger licensing requirements and enhanced regulatory mechanisms to improve accountability among service providers.

Officials said these proposed measures would help create a more reliable and transparent food delivery environment for railway passengers while raising service standards across the sector.

Improved Complaint Resolution System

To strengthen oversight, IRCTC has upgraded its passenger grievance mechanism, enabling quicker complaint registration and faster response times. The enhanced system is expected to assist authorities in identifying unauthorized vendors and taking corrective action more efficiently.

Focus on Passenger Trust and Digital Security

The latest crackdown aligns with ongoing efforts to modernize public services and strengthen digital governance. IRCTC reiterated that maintaining passenger safety, secure online transactions, and high-quality catering services remains central to its mission.

Officials confirmed that surveillance and enforcement activities will continue on a long-term basis, with further technological upgrades and regulatory improvements expected in the coming months. Passengers have also been advised to avoid sharing personal or financial information on unverified websites and applications.

By tightening oversight and promoting the use of authorized platforms, IRCTC aims to create a safer, more transparent, and dependable e-catering ecosystem for millions of railway travelers across India.

Continue Reading

Trending

Copyright © 2022 420 Reports Marijuana News & Information Website | Reefer News | Cannabis News