#RBI #DigitalBanking #CyberSecurity #BankingReform #OnlineFraud #Phishing #IndianBanks #SecureBanking #TechInFinance #Fintech #BankingSecurity #DigitalIndia #BankInDomain #FinancialSafety #RBIUpdate
Mumbai: In a landmark move to bolster cybersecurity and protect customers from rising online frauds, the Reserve Bank of India (RBI) has directed all banks in the country to shift their official websites to the new ‘.bank.in’ domain starting today.
This regulatory mandate ensures that only RBI-regulated banks can register and operate under this new domain, creating a verified and exclusive digital identity for India’s banking ecosystem. The initiative is expected to enhance consumer trust, safeguard sensitive data, and make online banking safer for millions of users across the country.
Exclusive Digital Identity for Banks
The introduction of the ‘.bank.in’ domain marks a significant step toward eliminating fraudulent and fake banking websites that have increasingly targeted unsuspecting customers in recent years.
“The ‘.bank.in’ domain will serve as a trusted digital badge for legitimate banks in India,” said a senior RBI official familiar with the rollout. “Customers can now easily identify authentic bank websites and stay protected from phishing attacks and cyber scams.”
The Institute for Development and Research in Banking Technology (IDRBT)—an institution established by the RBI—has been designated as the sole registrar for the domain. IDRBT is authorised by the National Internet Exchange of India (NIXI) under the Ministry of Electronics and Information Technology (MeitY) to oversee registrations and ensure compliance.
Leading Banks Already Onboard
Several leading private sector banks have already completed the transition ahead of the RBI’s deadline. Customers will now see updated website addresses ending with “.bank.in,” while older links will automatically redirect to the new secure domains.
-
ICICI Bank: https://www.icici.bank.in/
-
HDFC Bank: https://www.hdfc.bank.in/
-
Axis Bank: https://www.axis.bank.in/
-
Kotak Mahindra Bank: https://www.kotak.bank.in/en/home.html
Public sector lenders and cooperative banks are also in various stages of migration, with most expected to transition before the end of this financial year.
Why the Change Was Needed
Over the past few years, India has witnessed a surge in cyber frauds, phishing attacks, and fake banking websites designed to trick users into revealing confidential financial details. According to data from the National Cyber Crime Reporting Portal, financial frauds accounted for nearly 65% of all online crime complaints in the last two years.
These incidents prompted the RBI to explore structural solutions to protect digital banking customers. The new domain-based approach is modeled after successful global practices—such as the “.bank” domain in the US, which has significantly reduced fraud by ensuring that only verified banking institutions can use the suffix.
Cybersecurity experts say this move could be a game-changer for India’s digital banking ecosystem.
“Unlike .com or .in addresses that anyone can buy, the ‘.bank.in’ domain is restricted to regulated financial institutions,” explained Ritesh Chopra, Director at Norton India. “This means customers can immediately recognize if a website truly belongs to their bank.”
What Customers Should Do
To ensure a seamless and safe online banking experience, the RBI and cybersecurity professionals have issued a few key recommendations for users:
-
Always check the URL – Ensure the website address ends with “.bank.in” before entering login credentials.
-
Avoid using search engine links – Instead, bookmark your bank’s official website or type it manually to avoid phishing traps.
-
Beware of fake emails or SMS – Fraudsters often send links that mimic official websites.
-
Use official mobile apps – Download banking apps only from verified app stores.
The RBI has also advised banks to educate their customers about the domain change through SMS alerts, official notifications, and email campaigns.
Stronger, Safer Future for Digital Banking
The ‘.bank.in’ domain migration comes at a time when digital banking transactions in India are at an all-time high. With over 10 billion UPI transactions recorded in September 2025, securing digital platforms has become a national priority.
Industry analysts believe the RBI’s step is proactive and timely, aligning with India’s larger goal of becoming a global leader in secure digital finance.
By creating a trusted and verified digital space for banks, the central bank aims to build a strong foundation of customer confidence in online financial services—a critical factor for sustaining the momentum of India’s fintech revolution.
As the change takes effect, the RBI’s message to the public is clear:
“If it doesn’t end with ‘.bank.in’, it isn’t your bank.”
Hashtags:
#RBI #DigitalBanking #CyberSecurity #BankingReform #OnlineFraud #Phishing #IndianBanks #SecureBanking #TechInFinance #Fintech #BankingSecurity #DigitalIndia #BankInDomain #FinancialSafety #RBIUpdate
