InsightsOnIndia 27 January 2026 governance

India's Cybercrime Losses Top ₹1,000 Crore Monthly; Country Declines to Ratify UN Cyber Convention

Q: What is India's monthly cybercrime financial loss and why does India decline UNCAC Budapest Convention?

India's **cybercrime losses have crossed ₹1,000 crore per month** (over ₹12,000 crore annually) — making it one of the fastest-growing cybercrime economies globally. Despite this, India has **declined to ratify the Budapest Convention on Cybercrime (UNCAC)** — the international treaty for cybercrime cooperation — citing concerns about **sovereignty**, **cross-border data sharing obligations**, and the convention's ability for foreign law enforcement to request access to Indian digital infrastructure without adequate safeguards.

Q: What is the Budapest Convention on Cybercrime and why has India not joined?

The **Budapest Convention** (Council of Europe Convention on Cybercrime, 2001) is the international legal framework for **cybercrime cooperation** — covering digital evidence exchange, extradition for cybercriminals, and real-time interception authorization. Over **68 countries** have ratified it. India's refusal is based on: (1) **sovereignty concerns** — foreign governments can compel ISPs/tech companies to hand over data; (2) India was **not involved in drafting** the convention; (3) India prefers multilateral frameworks under **UN (UNODC)** rather than Council of Europe-led conventions.

Q: What is the Indian Cybercrime Coordination Centre (I4C) and how does it combat cybercrime?

The **Indian Cybercrime Coordination Centre (I4C)** under **Ministry of Home Affairs** is India's national hub for cybercrime prevention. Key functions: (1) **National Cybercrime Reporting Portal** (cybercrime.gov.in) — centralized complaint mechanism; (2) **Cyber Fraud Mitigation Centre (CFMC)** — real-time fraud prevention with banks; (3) **Suspect Registry** database; (4) **Samanvay platform** — inter-state cybercrime investigation coordination; (5) **1930 helpline** — immediate response for financial fraud. I4C coordinates with **INTERPOL, FBI, Europol** for international cybercrime cases.

Q: What is India's National Cyber Security Policy and how does it address financial cybercrime?

India's **National Cyber Security Policy (NCSP) 2013** (being revised to NCSP 2.0) covers: (1) **CERT-In (Computer Emergency Response Team-India)** — national agency for cyber incident response; (2) **National Critical Information Infrastructure Protection Centre (NCIIPC)**; (3) **Cyber Swachhta Kendra** (botnet cleaning); and (4) mandatory **cybersecurity audits** for critical sectors. New measures for financial cybercrime: **same-device banking limits**, **SIM swap restrictions**, mandatory **TRAI caller ID** for fraudulent calls, and **digital literacy** campaigns under **Cyber Crime Warriors** program.

India's cyber incidents doubled to 22.68 lakh by 2024; declined to ratify UN Cybercrime Convention over data sovereignty concerns.

InsightsOnIndia News

insightsonindia.com

Key Points for RAS

India has not signed the UN Convention against Cybercrime adopted in 2024
India's cyber incidents rose from 10.29 lakh in 2022 to 22.68 lakh in 2024, with monthly losses exceeding ₹1,000 crore in early 2025
India's concerns: cross-border data access provisions could conflict with data sovereignty under the Digital Personal Data Protection Act 2023
Convention's broad definition of cybercrime could potentially suppress civil liberties and investigative journalism
India favours bilateral mutual legal assistance treaties (MLATs) for cybercrime cooperation instead

India has not signed the UN Convention against Cybercrime adopted in 2024, reflecting deep fractures in global cyber governance, as reported in current affairs coverage on January 27, 2026. India recorded a massive rise in cyber incidents, jumping from 10.29 lakh in 2022 to 22.68 lakh in 2024, with monthly losses exceeding ₹1,000 crore in early 2025.

India's concerns include provisions on cross-border data access that could conflict with data sovereignty principles under the Digital Personal Data Protection Act 2023. The convention's broad definition of cybercrime could potentially be used to suppress civil liberties and investigative journalism. India instead favours bilateral mutual legal assistance treaties (MLATs) for cybercrime cooperation.

Report Issue

Frequently Asked Questions

1 What is India's monthly cybercrime financial loss and why does India decline UNCAC Budapest Convention?

India's cybercrime losses have crossed ₹1,000 crore per month (over ₹12,000 crore annually) — making it one of the fastest-growing cybercrime economies globally. Despite this, India has declined to ratify the Budapest Convention on Cybercrime (UNCAC) — the international treaty for cybercrime cooperation — citing concerns about sovereignty, cross-border data sharing obligations, and the convention's ability for foreign law enforcement to request access to Indian digital infrastructure without adequate safeguards.

2 What is the Budapest Convention on Cybercrime and why has India not joined?

The Budapest Convention (Council of Europe Convention on Cybercrime, 2001) is the international legal framework for cybercrime cooperation — covering digital evidence exchange, extradition for cybercriminals, and real-time interception authorization. Over 68 countries have ratified it. India's refusal is based on: (1) sovereignty concerns — foreign governments can compel ISPs/tech companies to hand over data; (2) India was not involved in drafting the convention; (3) India prefers multilateral frameworks under UN (UNODC) rather than Council of Europe-led conventions.

3 What are the major types of cybercrimes causing financial losses in India?

Major cybercrime types causing ₹1,000 crore+ monthly losses in India: (1) Investment scams — fake trading platforms, Ponzi schemes through social media; (2) KYC update scams — phishing via fake bank/UIDAI SMSes; (3) OTP fraud — tricking users into sharing one-time passwords; (4) Romance scams — 'pig butchering' crypto investments; (5) Job fraud — advance fee for fake jobs; and (6) Digital arrest fraud — impersonating police/CBI demanding ransom. Cyber cells in major cities receive 3-5 lakh complaints annually.

4 What is the Indian Cybercrime Coordination Centre (I4C) and how does it combat cybercrime?

The Indian Cybercrime Coordination Centre (I4C) under Ministry of Home Affairs is India's national hub for cybercrime prevention. Key functions: (1) National Cybercrime Reporting Portal (cybercrime.gov.in) — centralized complaint mechanism; (2) Cyber Fraud Mitigation Centre (CFMC) — real-time fraud prevention with banks; (3) Suspect Registry database; (4) Samanvay platform — inter-state cybercrime investigation coordination; (5) 1930 helpline — immediate response for financial fraud. I4C coordinates with INTERPOL, FBI, Europol for international cybercrime cases.

5 What is India's National Cyber Security Policy and how does it address financial cybercrime?

India's National Cyber Security Policy (NCSP) 2013 (being revised to NCSP 2.0) covers: (1) CERT-In (Computer Emergency Response Team-India) — national agency for cyber incident response; (2) National Critical Information Infrastructure Protection Centre (NCIIPC); (3) Cyber Swachhta Kendra (botnet cleaning); and (4) mandatory cybersecurity audits for critical sectors. New measures for financial cybercrime: same-device banking limits, SIM swap restrictions, mandatory TRAI caller ID for fraudulent calls, and digital literacy campaigns under Cyber Crime Warriors program.

Syllabus Topics

Subjects

Science & TechnologyCurrent Affairs