National Consumer Commission Orders SBI to Refund Fraud Losses, Upholds Zero Liability Rule
AI-generated from multiple sources. Verify before acting on this reporting.
NEW DELHI, April 17, 2026 — The National Consumer Commission has ordered the State Bank of India (SBI) to refund Rs 1.99 lakh and pay an additional Rs 25,000 in compensation to a customer following a cyber fraud incident involving a fake electricity bill scam. The ruling reinforces the bank's liability in cases where unauthorized electronic transactions are reported promptly but not adequately remedied.
The case involved Prodosh Kumar Banerjee, who reported an unauthorized transaction to SBI after his account was debited through a fraudulent scheme. The commission found that SBI failed to take adequate remedial action despite the customer's prompt reporting of the breach. The order was issued on April 17, 2026, following a review of the circumstances surrounding the financial loss.
The commission upheld the 'zero liability' principle for customers in cases of third-party breaches reported within three working days. This principle mandates that banks must bear the financial burden when customers report unauthorized transactions within the stipulated timeframe, provided the bank failed to secure the transaction or reverse the charge effectively.
SBI, India's largest public sector lender, has faced scrutiny over cybersecurity measures and customer protection protocols in recent years. The bank's failure to reverse the transaction or provide timely relief to Banerjee led to the commission's intervention. The ruling underscores the importance of banks adhering to regulatory guidelines regarding electronic payment security and customer grievance redressal.
The fake electricity bill scam involved fraudsters sending deceptive notifications to customers, prompting them to click on malicious links that compromised their banking credentials. Once accessed, the fraudsters initiated unauthorized transfers from the victim's account. Banerjee's case highlights the growing sophistication of such scams and the need for robust verification mechanisms by financial institutions.
The commission's decision serves as a precedent for similar cases involving unauthorized digital transactions. It emphasizes the bank's responsibility to implement stronger security protocols and ensure swift action when customers report suspicious activities. The Rs 25,000 compensation awarded to Banerjee reflects the commission's stance on penalizing banks for negligence in protecting customer funds.
Legal experts note that the ruling aligns with existing regulations issued by the Reserve Bank of India, which hold banks accountable for third-party frauds if customers report the incident within the prescribed period. However, the effectiveness of these measures depends on consistent enforcement and the banks' ability to detect and prevent fraud in real time.
SBI has not yet issued a public statement regarding the commission's order. The bank is expected to comply with the directive, which includes the refund and compensation payment. The case may prompt further review of SBI's cybersecurity frameworks and customer service protocols to prevent similar incidents in the future.
As cyber fraud continues to evolve, the commission's decision reinforces the need for collaboration between banks, regulators, and law enforcement to safeguard consumer interests. The outcome of this case may influence future rulings and regulatory actions aimed at enhancing digital payment security across India's banking sector.