Previously, only banks were required to report to the Central Bank in cybersecurity matters, however, starting with October 2018, insurance, microfinance and other supervised organizations will also fall under the Central Banks supervision.
Thus, banks will have to assess the risks of unauthorized money transfers and develop their own criteria for such transfers. The Central Bank, in turn, will develop and by that time publish its criteria for potentially fraudulent transactions. However, operations involving transfers of funds from a legal entitys account to many personal accounts in other regions fall into the “questionable” category, as well as transactions with “unusual” purpose of payment.
Banks will also have to implement mechanisms to block such transactions and make changes to existing contracts with customers. If there are signs of unauthorized transfer of funds, banks are required to suspend execution of the payment for up to two days and request confirmation from the client, according to Russian News agency Tass.
The law also includes the procedure for banks for situations when customers themselves report fraudsters gaining access to managing their accounts.
Every day we send out a free e-mail with the most important headlines of the last 24 hours.
Subscribe now
We welcome comments that add value to the discussion. We attempt to block comments that use offensive language or appear to be spam, and our editors frequently review the comments to ensure they are appropriate. If you see a comment that you believe is inappropriate to the discussion, you can bring it to our attention by using the report abuse links. As the comments are written and submitted by visitors of the The Paypers website, they in no way represent the opinion of The Paypers.