The Delhi High Court has observed that bank customers who ignore repeated fraud alerts and voluntarily click suspicious links cannot automatically hold banks responsible for financial losses suffered in cyber fraud incidents. The court made the observation while dismissing a plea filed by a customer seeking compensation after losing money in an online fraud case.
The High Court stated that banks cannot be expected to protect customers from every instance of negligence when users themselves disregard security advisories and digital banking precautions. The ruling came in a case involving unauthorised online transactions allegedly triggered after the customer interacted with suspicious digital content despite receiving warning messages from the bank.
Court Says Customers Must Exercise Digital Caution
The court noted that digital banking users are repeatedly warned by financial institutions not to click unknown links, share OTPs, or disclose confidential banking credentials. According to the judgment, customers are expected to act with reasonable caution while using online banking services.
The High Court observed that if a customer ignores repeated cyber fraud warnings and proceeds to engage with suspicious messages or links, the liability cannot automatically be shifted entirely onto the bank. The court stressed that digital banking systems also require responsible conduct from users.
According to the ruling, banks cannot monitor or control every action voluntarily performed by customers on third-party websites, fraudulent applications, or phishing links.
FCRF’s Flagship Cyber Law Certification Returns With a New Four-Week Cohort
Fraud Triggered Through Suspicious Link Interaction
The case reportedly involved fraudulent online transactions carried out after the petitioner allegedly clicked a suspicious link and shared sensitive banking information. The customer later sought compensation from the concerned bank, claiming inadequate security measures and failure to prevent the fraud.
However, the court observed that the bank had issued multiple advisories and warnings cautioning customers against phishing attacks and suspicious online activity. The judgment noted that cyber fraud awareness messages are routinely circulated through SMS alerts, emails, and banking applications.
The court stated that once adequate warnings are provided, customers also bear responsibility for protecting their own banking credentials and digital access information.
Delhi HC Highlights Shared Responsibility in Cybersecurity
The High Court emphasised that cybersecurity is a shared responsibility between banks and customers. While financial institutions are required to maintain robust security infrastructure, users are also expected to follow basic cyber hygiene practices.
The judgment highlighted that digital frauds frequently rely on social engineering tactics where victims are deceived into voluntarily disclosing sensitive information. Courts and regulators have increasingly stressed the importance of public cyber awareness amid rising phishing and online banking fraud cases.
The court further noted that imposing blanket liability on banks in every cyber fraud incident could create an unreasonable standard where customer negligence is completely ignored.
Rising Digital Fraud Cases Prompt Judicial Observations
The ruling comes amid increasing cyber fraud complaints involving phishing links, fake customer-care calls, remote-access scams, and unauthorised digital banking transactions across India. Courts, regulators, and cybersecurity agencies have repeatedly advised citizens to avoid clicking unknown links or sharing OTPs and banking details online.
Legal experts believe the judgment reinforces the principle that customer conduct and adherence to cyber safety advisories may play an important role while determining liability in digital fraud disputes.
