XploreGOA.in

Curated Goa travel planning with verified stays, beach guides, hidden gems, local eats, experiences, and itinerary tools for seamless, authentic coastal getaways year-round.

NetFrendz

Smart digital growth partner delivering web design, branding, and performance marketing, turning clicks into customers with measurable ROI and customer-centric execution.

boxoffice.in

Real-time box office updates, opening-day trends, verdict trackers, trailers, and critic–audience scores for Bollywood, South cinema, and major global releases. programme.

RBI's .bank.in Domain Mandate

RBI bank.in Domain Mandate: What It Means for Your Online Banking Security

Posted on by admin

In an increasingly digital world, the security of our financial information is paramount. Every day, countless Indians engage in online banking, making transactions, checking balances, and managing their investments. However, this convenience comes with a risk: the persistent threat of cybercrime, especially phishing attacks, where fraudsters create fake websites to steal your login credentials and hard-earned money. To combat this menace, the Reserve Bank of India (RBI) has rolled out a groundbreaking security measure that fundamentally changes how we interact with our banks online.

As of November 2025, all Indian banks have been mandated to migrate their official websites to a new, exclusive, and highly secure domain: ‘.bank.in’. The deadline for this massive transition was October 31, 2025, and major institutions like the State Bank of India (SBI), HDFC Bank, ICICI Bank, Punjab National Bank (PNB), and Canara Bank have already made the switch. This isn’t just a cosmetic change of a website address; it’s a structural overhaul of India’s digital banking infrastructure designed to build a fortress around your financial life. But what does this mean for you, the average customer? How does a simple domain change enhance your security, and what do you need to do to stay safe? This comprehensive guide will walk you through everything you need to know about the RBI’s ‘.bank.in’ mandate.​

RBI's .bank.in Domain MandateWhy the Change? Understanding the Threat of Phishing

Before delving into the solution, it’s crucial to understand the problem. Phishing is one of the most common forms of cyber fraud. Scammers create websites that are nearly identical to a bank’s official site, often using URLs that are deceptively similar—for instance, sbi-online.com instead of the official onlinesbi.com. They then send emails or text messages, often creating a false sense of urgency, prompting you to click a link and log in. Unsuspecting customers enter their username and password on the fake site, handing over the keys to their bank accounts.

The use of generic domains like ‘.com’, ‘.co.in’, or ‘.org’ makes it easy for criminals to register look-alike names and execute these scams. The RBI recognized that without a standardized, verified, and exclusive domain for the banking sector, customers would remain vulnerable. The ‘.bank.in’ domain was created to be the definitive digital identity for every bank in India, making it significantly harder for fraudsters to impersonate them.​

What is the ‘.bank.in’ Domain?

The ‘.bank.in’ domain is a “top-level domain” (TLD) exclusively reserved for the Indian banking community. Think of it as a digital seal of authenticity. Unlike generic domains that anyone can register, the ‘.bank.in’ domain is a “gated community” with a strict gatekeeper.​

The Institute for Development and Research in Banking Technology (IDRBT), an entity established by the RBI, has been appointed as the sole registrar for this domain. This means a bank cannot simply go online and buy a ‘.bank.in’ address. It must go through a rigorous verification process with the IDRBT, which confirms its legitimacy as a licensed banking institution. This centralized control ensures that only genuine banks can operate under this domain, effectively cutting off the supply of convincing fake URLs for phishers.​

The primary goals of this initiative are:

  • To Enhance Cybersecurity: By creating a secure and verified online space, the RBI aims to drastically reduce the success rate of phishing and other domain-related scams.​

  • To Boost Public Confidence: When customers see the ‘.bank.in’ suffix, they can have a higher degree of confidence that they are on their bank’s legitimate website, fostering greater trust in digital banking services.​

  • To Standardize Digital Identity: The move creates a uniform and predictable naming convention for all bank websites in India, making the digital ecosystem cleaner and easier for customers to navigate.

What This Means for You: A Customer’s Guide

The transition to the ‘.bank.in’ domain directly impacts how you access your bank’s services. Here’s what you need to know and do:

  1. Always Check the URL: The most critical habit to adopt is to always check the address bar of your browser before entering any sensitive information. The URL must end in ‘.bank.in’. For example, if you are an SBI customer, the new official URL is https://sbi.bank.in. Any other variation, no matter how convincing, is likely a fraudulent site.​

  2. Update Your Bookmarks: If you have saved your bank’s website as a bookmark in your browser, it’s time to update it. Visit the new ‘.bank.in’ address and save it as your new bookmark. While most banks will automatically redirect their old URLs to the new ones for a transitionary period, relying on old links is a risky habit. Fraudsters can exploit this confusion.​

  3. Be Skeptical of Unsolicited Communication: Phishing attacks almost always begin with an unsolicited email, SMS, or WhatsApp message. Be extra vigilant. No matter how official a message looks, never click on links directly. Instead, manually type the bank’s new ‘.bank.in’ address into your browser to log in. Remember, your bank will never ask for your password, PIN, or OTP via email or text.

  4. Verify, Then Trust: The ‘.bank.in’ domain is a strong indicator of legitimacy, but it should be part of a broader security mindset. Always look for the padlock icon in the address bar, which indicates a secure (HTTPS) connection.

List of New Official Websites for Major Indian Banks

To help you navigate this transition, here are the new, official website addresses for some of India’s leading banks:​

  • State Bank of India (SBI): https://sbi.bank.in

  • HDFC Bank: https://www.hdfc.bank.in

  • ICICI Bank: https://www.icici.bank.in

  • Punjab National Bank (PNB): https://pnb.bank.in

  • Axis Bank: https://www.axis.bank.in

  • Kotak Mahindra Bank: https://www.kotak.bank.in

  • Bank of India: https://boi.bank.in

  • Canara Bank: https://canara.bank.in

  • Bank of Baroda: (Check the bank’s official communication for the updated URL)

If your bank is not on this list, visit its nearest branch or call its official customer care number to get the confirmed new website address. Do not rely on search engine results alone, as they can sometimes be manipulated to show fraudulent links.

The Road Ahead: A More Secure Digital Banking Future

The RBI’s ‘.bank.in’ initiative is a proactive and powerful step toward safeguarding the financial interests of millions of Indians. While no security measure is entirely foolproof, this move significantly raises the barrier for cybercriminals. By creating a trusted digital neighborhood for banks, the RBI is cleaning up the internet’s “wild west” and making it a safer place to conduct financial transactions.

For customers, this change demands a small but crucial adjustment in behavior. The simple act of verifying the ‘.bank.in’ domain before every login can be the difference between a secure transaction and a financial nightmare. As India continues its journey toward a digitally-empowered economy, initiatives like this are not just welcome; they are essential. Embrace this change, stay vigilant, and bank with confidence in a more secure digital ecosystem.

Please note that the above domains / website may be under process. So please verify from your bank first before visiting the website or doing any transactions.

Category: Banking News