Latest news with #OTP
Time of India
11 hours ago
- Entertainment
- Time of India
Meta's "Scam se Bacho 2.0" brings cybersecurity education to public spaces
Meta has unveiled "Scam se Bacho 2.0," a street-based digital safety campaign featuring viral creator Signboard_wala 's witty placards across Mumbai's iconic locations to combat online fraud. The innovative campaign uses humorous signboards with messages like "Ex ho ya scammer, dono ko block & report karo" and "Keep your friends close and your OTPs closer" to educate users about fake loan scams, impersonation fraud, and OTP theft while promoting Meta's safety features including two-factor authentication and block-and-report functions. Unlike traditional awareness campaigns, this street-level approach transforms digital safety education into engaging public conversations through culturally relevant humor and bold visual storytelling across Mumbai's busiest areas. The initiative builds on last year's successful "Scams se Bacho" campaign that partnered with Bollywood actor Ayushmann Khurrana and was launched in collaboration with the Ministry of Electronics and Information Technology, Indian Cybercrime Coordination Centre, and Ministry of Information and Broadcasting. by Taboola by Taboola Sponsored Links Sponsored Links Promoted Links Promoted Links You May Like The Best Method for a Flat Stomach After 50 (It's Genius!) Lulutox Undo The campaign specifically targets common online threats including fraudulent loan offers and identity theft while encouraging active user participation in digital safety practices. By combining humor with serious safety messaging, Meta aims to create memorable moments that make people reconsider their online security habits without resorting to fear-based tactics or heavy-handed messaging approaches.
Hans India
15 hours ago
- Entertainment
- Hans India
Meta launches anti-scam campaign with a twist to drive digital safety awareness
As part of Meta's commitment to user safety, we've launched the second edition of our anti-scams campaign, Scam se Bacho 2.0' that delivers digital safety tips with a twist. This year's campaign takes to the streets, literally, through a creative collaboration with digital creator Signboard_wala, known for using bold, witty placards to spark real-world conversations. Building on the success of last year's campaign, Scam se Bacho 2.0 brings scam awareness into public spaces across some of the most iconic streets in Mumbai, using culturally relevant and visually impactful storytelling to inform people about common online scams such as fake loan scams, impersonation and OTP fraud, among others. The campaign features Signboard_wala holding different signs such as 'Ex ho ya scammer, dono ko block & report karo' and 'Keep your friends close and your OTPs closer' – packaged as witty one-liners, the campaign delivers important digital safety lessons, spotlights Meta's safety features like two-factor authentication (2FA), Block and Report and encourages people to take an active role in their online safety. The clever, humorous messages designed to grab attention, definitely spark a smile but most importantly, make people pause and reconsider online scams. It's awareness with a twist - no preaching, no drama – just authentic, relatable moments that resonate. Last year Meta launched its safety campaign 'Scams se Bacho' by partnering with Bollywood star Ayushmann Khurrana to educate people on how to stay safe from online scams and promote safer digital practices. Launched in collaboration with the Ministry of Electronics and Information Technology (MeitY), Indian Cybercrime Coordination Centre (I4C) and Ministry of Information and Broadcasting (MIB), the campaign emphasised Meta's commitment to safeguard people online, supporting the Government's goal to combat the rising cases of scams and cyber frauds in the country.
Mint
19 hours ago
- Mint
Newly proposed OTP rules: A case of regulatory overreach in telecom?
Next Story Rahul Matthan To curb OTP misuse, India's government has proposed changes in its Telecom Cyber Security Rules. While the intent is fine, it could make compliance difficult and expose users to other risks. We must weigh the likely benefits of a shift against its potential costs. In India, the most widely used additional form of authentication is the one-time password (OTP). Gift this article As transactions have grown increasingly digital, service providers rarely (if ever) come face-to-face with their customers. This means that without reliable means of authentication, they have no way to ensure that the products and services they sell actually end up in the hands of those who bought them. As transactions have grown increasingly digital, service providers rarely (if ever) come face-to-face with their customers. This means that without reliable means of authentication, they have no way to ensure that the products and services they sell actually end up in the hands of those who bought them. One way to address this would be to insist on multiple factors of authentication. In practical terms, this means that in addition to proving who you are in reference to 'something you know' (such as a PIN or a password), you would also be required to do so with reference to 'something you have' (such as a hardware token or a mobile device) or 'something you are' (such as a fingerprint or another biometric identifier). In India, the most widely used additional form of authentication is the one-time password (OTP), a number sequence sent to your mobile phone (since this is 'something you have') to validate that you are who you say you are. There are many reasons why these are preferred. OTPs are only valid for a single session, which means that an attacker who gains access to one will not be able to reuse it, and, since it has limited validity, has just a small window within which to misuse it. Today, OTPs are used for all sorts of purposes. Delivery boys insist on them before handing over a parcel and ride-hailing apps need one to start a ride. Given their widespread use (and perhaps because of it), malicious actors are going to extraordinary lengths to find ways to exploit them. Some register for services using old or recycled SIMs so that they can obtain OTPs to access the previous user's account. Others use OTP application programming interfaces (APIs) to flood users with OTPs, which can serve as a way to perpetrate denial-of-service attacks or mask other fraudulent activity. Last week, to curb some of these illicit uses, the Indian government proposed a set of changes to India's Telecom Cyber Security Rules. They intend to establish a government-run real-time platform that validates whether a mobile number is active, recently re-issued or swapped, and linked to the same subscriber profile recorded by the telecom company. This, the government hopes, will help prevent impersonation through SIM reuse, SIM swaps and spoofing. The Cyber Security Rules will apply to all organizations that use telecom identifiers to authenticate users or deliver services. For this purpose, it has created a new category of regulated entities called Telecommunication Identifier User Entities (TIUEs), defined in terms so broad that they cover over-the-top platforms, fintech firms, e-commerce service providers, edtech platforms and just about any entity that provides digital services. TIUEs have to follow the same cybersecurity protocols as other licensed operators, including risk assessment, incident reporting and data security. In the event of misuse, the government will have the power to temporarily suspend the use of a given telecom identifier or suspend its use for the identification of customers/users or delivery of services. It could even permanently disconnect it. While the Centre's efforts at cracking down on OTP abuse are appreciable, I worry that the solution it has come up with exceeds its authority. The Telecommunications Act of 2023 applies to entities that provide telecom services or operate telecom networks and equipment. In creating a new category of regulated entities called TIUEs, its amendments extend the government's authority to just about any organization that uses telecom services as part of its business. This is far in excess of what the Act permits. Today, OTPs are used across a range of sectors. The Reserve Bank of India has permitted the use of Aadhaar-based OTPs for e-KYC and has authorized the use of OTPs for card-not-present transactions, UPI, net-banking, wallets and recurring e-mandates. The National Health Authority frequently uses OTPs for the creation of health IDs, consent management and access to health information. All the entities that use OTPs for these purposes are regulated by existing regulators and have to abide by a detailed set of obligations that set out how OTP authentication needs to be carried out. If these amendments to the cybersecurity rules come into force, they will additionally be forced to comply with the instructions of the telecom regulator. This will give rise to confusion and regulatory uncertainty, increase their burden of compliance and force businesses to implement measures that may be improperly aligned with the objectives of the different regulators they have to obey. Also Read: Vivek Kaul: Fast thinking is the great enabler of digital fraud There are also practical consequences of this approach that the government may not have fully thought through. Given how broadly it has been defined, tens of thousands of entities will likely qualify as TIUEs and will have to integrate their services with the mobile number validation (MNV) platform. This will create a centralized log of OTP usage, offering cross-sectoral intelligence on user behaviour of unprecedented magnitude. This will probably become a honeypot for cybersecurity attacks and data breaches that could put us all at risk. Regardless of the idea's intention, it will also likely be viewed as a form of surveillance that is neither proportionate nor warranted—and thus an instance of regulatory overreach. While OTP misuse is a problem, all we need to do is tighten SIM re-issuance procedures and mandate fraud reporting. Over-broad solutions can end up eroding the very trust they seek to preserve. The author is a partner at Trilegal and the author of 'The Third Way: India's Revolutionary Approach to Data Governance'. His X handle is @matthan. Topics You May Be Interested In Catch all the Business News, Market News, Breaking News Events and Latest News Updates on Live Mint. Download The Mint News App to get Daily Market Updates.
News18
21 hours ago
- Business
- News18
One TDS Mistake Cost Tenant Rs 1 Lakh Fine Despite Paying Rs 55k Regularly In Rent
Last Updated: A tenant received a Rs 1 lakh tax penalty for not complying with TDS provisions on his Rs 55k monthly rent. TDS On Rent: A tenant received the tax penalty of Rs 1 lakh by the income tax department despite paying a regular Rs 55k rent per month because he forgot to comply with the tax deducted at source (TDS), according to a report of ET. The tenant neither deducted TDS nor submitted the TDS challan cum return statement. Sujit Bangar, the founder of told ET that a tenant named Abhishek forgot to deduct TDS while paying Rs 55,000 per month in rent. 'As per section 271H of Income Tax Act, 1961, if a person fails to comply with TDS provisions and doesn't file a statement of TDS, there can be a penalty of minimum Rs 10,000 which can be extended to Rs 1 lakh," he added. Not all tenant have to deduct TDS. According to ection 194-IB of the Income Tax Act, 1961, those who are paying a rent over Rs 50000 per month are required to deduct 2 per cent as TDS and file a TDS challan to make the payment. Here's What Tenants Need To Do: Deduct 2% TDS and file Form 26QC online. Tenants will get Form 16C once they file Form 26QC. Tenants must give the Form 16C to the landlord. Select Form: Choose Form 26QC and click 'Proceed." Enter Tenant Details: Input tenant's PAN, name, address, and contact details. Verify with OTP. Add Landlord Details: Enter landlord's PAN, name, and address. Fill Property/Rent Details: Provide property address, rent agreement details, total rent, and tenancy period. Specify TDS Details: Enter TDS (2% rate), deduction date, and amount. Choose Payment Mode: Select online (net banking/debit card) or offline (bank payment). Review & Submit: Verify details, enter captcha, and submit. Pay online or save for offline. Complete Payment: Pay TDS online (get CIN) or offline at a bank. Download Form 16C: Log in to download Form 16C within 15 days, and share with landlord. Key Things You Should Know: TDS Rate: 2% (or 20% without landlord PAN). Due Date: File within 30 days of financial year-end, property vacation, or agreement termination. Penalties: Rs 200/day for late filing; Rs 100/day for late Form 16C; Rs 10,000-Rs 1,00,000 for non-filing. Use tenant/landlord PAN; no TAN needed. Check Form 26AS for accuracy. view comments First Published: Disclaimer: Comments reflect users' views, not News18's. Please keep discussions respectful and constructive. Abusive, defamatory, or illegal comments will be removed. News18 may disable any comment at its discretion. By posting, you agree to our Terms of Use and Privacy Policy.
News18
2 days ago
- Business
- News18
Why Adding Nominee To Your EPF, Mutual Funds And Bank Accounts Is A Must And How To Do It Online
Last Updated: Appointing a nominee ensures your savings go to the right person without legal hassle. Appointing a nominee for your financial accounts is one of the most important steps in protecting your family's future. A nominee is the person who will receive your money, whether it is in your bank account, mutual fund, or provident fund, after your death. If you haven't added a nominee, your family may face lengthy legal processes to claim the money. The good news is that most banks and financial platforms now let you update this online in just a few steps. If you invest in mutual funds using apps like Zerodha, Groww, Paytm Money, or websites like CAMS or KFintech, adding a nominee is also simple. – Log in to the app or platform you use. – Go to your profile settings or the nominee details section. – Fill in the nominee's name, date of birth (DoB), and relationship. – If the nominee is a minor, you will need to enter guardian details too. – Confirm the nomination using an OTP or e-sign it using Aadhaar. Most Indian banks now allow you to register or update a nominee through internet banking or their mobile apps. – Log in to your bank's app or website. – Go to 'Service Requests" or 'Account Services." – Look for the 'Register/Update Nominee" option. – Enter the nominee's name, date of birth, relationship with you, and contact information. – Confirm the request using the OTP sent to your registered mobile number. Once the nomination is done, you will get a confirmation message via SMS or email. You can change or update your nominee anytime. However, in joint accounts, you may need all account holders to agree on the nominee change. If you are a salaried employee, your EPF account also needs a nominee. This can be done easily through the EPFO member portal. – Go to the EPFO website. – Log in using your UAN and password. – Click on the 'Manage" tab and select 'e-Nomination." – First, update your family details. – Then add your nominee(s) and assign a percentage share to each. – Finally, verify and e-sign using the OTP sent to your Aadhaar-linked mobile number. Your employer's approval is not needed, and the change is updated immediately. Do This Now, Save Trouble Later Having a nominee in place for your financial accounts can save your family from stress and legal delays if something happens to you. Since all nomination processes are now digital and quick, it is a good idea to log in and check if your accounts are updated. You can make changes anytime, so take a few minutes now; it could make a big difference later. tags : bank Business mutual funds view comments Location : Delhi, India, India First Published: July 28, 2025, 14:46 IST News business Why Adding Nominee To Your EPF, Mutual Funds And Bank Accounts Is A Must And How To Do It Online Disclaimer: Comments reflect users' views, not News18's. Please keep discussions respectful and constructive. Abusive, defamatory, or illegal comments will be removed. News18 may disable any comment at its discretion. By posting, you agree to our Terms of Use and Privacy Policy.
