In a stark reminder of the rapidly intensifying cyber threat landscape, the Reserve Bank of India (RBI) successfully thwarted over 61 million cyberattack attempts on its official website during the October–December 2025 quarter. The figure marks a dramatic escalation in the scale and frequency of attacks targeting one of India’s most critical financial institutions, even as all intrusion attempts were effectively blocked by the bank’s robust cybersecurity framework.
Massive Surge Targets RBI’s Digital Infrastructure
The disclosure was made by an RBI executive during a recent industry event, highlighting how the central bank has emerged as a prime target for cyber adversaries. Officials noted that the volume of attempted breaches has been rising at an alarming pace. In comparison, around 19 million attempts were recorded in the April–June quarter of 2025, followed by 31 million in July–September, before nearly doubling again in the final quarter of the year.
FCRF Launches Premier CISO Certification Amid Rising Demand for Cybersecurity Leadership
AI-Powered Defenses Block Every Single Attack
Experts tracking cybersecurity trends say this exponential rise underscores the growing sophistication and persistence of threat actors, ranging from low-level hackers to organized cybercriminal groups. Financial institutions, particularly central banks, are increasingly being targeted due to the critical nature of their digital infrastructure and the sensitive financial data they handle.
Despite the surge, the RBI’s defense systems ensured that none of the attacks penetrated its network. Officials attributed this success to a combination of advanced firewalls, real-time monitoring systems, and continuous upgrades to its security architecture. The central bank has also begun integrating artificial intelligence (AI) into its cybersecurity framework to proactively identify and neutralize threats.
Predictive Cybersecurity and Industry-Wide Push
According to officials, AI-driven tools are now being used to detect unusual patterns, trace the origins of suspicious traffic, and block potential threats before they reach critical systems. This shift marks a significant step towards predictive cybersecurity, where systems are trained to anticipate attacks rather than merely respond to them.
Beyond safeguarding its own infrastructure, the RBI is also pushing the broader payments ecosystem to adopt stronger technological and regulatory measures. Industry stakeholders have been encouraged to embrace innovations rather than resist them, particularly in areas related to digital payments security and compliance.
Tokenisation Success and Future AI Integration
Two major initiatives cited by officials—standing instructions for recurring payments and card tokenisation—have demonstrated how regulatory interventions can enhance both security and efficiency. Initially met with resistance from industry players, these measures have now achieved significant scale and acceptance.
Recent data indicates that millions of automated payment mandates are being processed with a success rate exceeding 99%, reflecting improved system reliability. Similarly, card tokenisation has seen widespread adoption, with billions of tokens generated and transactions worth lakhs of crores processed securely, minimizing the risks associated with storing sensitive card details.
Cybersecurity analysts believe that the RBI’s experience reflects a broader global trend, where financial institutions are facing an unprecedented surge in cyber threats. Attackers are increasingly leveraging automation, artificial intelligence, and distributed networks to launch large-scale attacks, making traditional defense mechanisms less effective.
In this context, the RBI’s move towards AI-powered security systems is being seen as both timely and necessary. Experts argue that the future of cybersecurity will depend heavily on the ability of institutions to integrate intelligent systems capable of real-time threat detection and response.
Looking ahead, the central bank is expected to further strengthen its digital defenses while continuing to guide the financial sector towards a more secure and resilient ecosystem. Officials have indicated that AI and application programming interfaces (APIs) will play a crucial role not only in cybersecurity but also in areas such as fraud detection, transaction reconciliation, and customer service.
As cyber threats continue to evolve, the RBI’s proactive approach highlights the importance of constant vigilance and technological adaptation. While the successful blocking of 61 million attack attempts demonstrates the strength of current defenses, it also serves as a warning that the scale of cyber risks facing India’s financial system is only set to grow in the coming years.
About the author – Ayesha Aayat is a law student and contributor covering cybercrime, online frauds, and digital safety concerns. Her writing aims to raise awareness about evolving cyber threats and legal responses.
