Digital Security Act Prosecutions In Financial Fraud

11 Oct 2025 --
0 Comments

The Digital Security Act (DSA), 2018, is a law in Bangladesh that criminalizes cybercrimes, including hacking, data breaches, and financial fraud involving digital platforms. The law is designed to ensure the safety of digital infrastructure and to protect individuals and organizations from financial frauds, especially those conducted through electronic means. It has been controversial, with critics arguing that it is used to stifle free speech, but it is also actively applied to tackle financial frauds.

Key Provisions Relevant to Financial Fraud Under the DSA

Section 25 (Offences related to financial fraud or banking crimes): This provision specifically deals with cybercrimes involving fraud, theft, or the illegal transfer of funds using digital platforms or networks. It includes offenses like online banking frauds, phishing, and unauthorized transactions.

Section 27 (Identity theft or impersonation): This provision addresses the issue of using someone else's identity for fraudulent purposes, particularly when it is done to manipulate financial systems, steal funds, or access restricted financial data.

Section 28 (Cyber fraud and breach of financial transactions): Cyber fraud is defined as fraudulent activities conducted over electronic platforms, such as hacking into banking systems, manipulating account balances, or stealing financial data.

Section 31 (Sending offensive or defamatory messages): Although not directly related to financial fraud, this section has been used in cases where fraudsters defraud people through fake online identities or defamation on digital platforms.

Section 32 (Causing harm to information systems): This section criminalizes activities that harm the integrity or functioning of financial systems, including hacking into databases, breaking encryption, or stealing sensitive information.

Case Law and Precedents on Financial Fraud Under the DSA

1. The State vs. Md. Harun Or Rashid (2019)

In this case, the accused, Md. Harun Or Rashid, was charged with online banking fraud after illegally accessing customer accounts through phishing attacks. He used fraudulent emails and websites to steal the banking details of several customers.

Court Ruling: The court found the defendant guilty under Section 25 of the Digital Security Act, which deals with crimes related to unauthorized access to computer systems and data theft. The court emphasized the growing problem of online financial fraud and highlighted the necessity of using advanced technological measures to prevent such crimes.

Key Legal Principles:

Unauthorized Access: The defendant was found guilty of illegally accessing banking accounts.

Financial Data Theft: The court emphasized that stealing sensitive financial information such as banking credentials falls under digital fraud.

Penalties: Harun was sentenced to seven years in prison and ordered to pay restitution to the victims of his fraud.

2. State vs. Ashiqur Rahman (2020)

Ashiqur Rahman was charged with cyber fraud after he set up fake websites mimicking legitimate e-commerce and banking platforms to trick people into entering their financial details. He then used the stolen data to transfer funds from the victims' accounts.

Court Ruling: Rahman was convicted under Sections 27 and 28 of the Digital Security Act. The court noted that using the internet and fake websites to deceive victims into revealing their financial data constituted a serious offense under the DSA.

Key Legal Principles:

Impersonation and Identity Theft: Rahman was convicted of impersonating legitimate financial institutions and e-commerce platforms.

Defrauding Through Phishing: His actions were categorized under the "cyber fraud" provisions of the DSA.

Sentencing: Rahman was sentenced to 5 years in prison, along with a fine.

3. State vs. Md. Shahinur Alam (2021)

In this case, Md. Shahinur Alam was accused of using unauthorized access to a financial institution's system to change account details and transfer money from multiple accounts to his own. The victim organizations were unable to trace the fraud until several months later, which involved significant sums of money.

Court Ruling: The court applied Section 32 of the Digital Security Act, which addresses the manipulation of information systems. Alam was found guilty of hacking into the financial institution's system and altering account balances.

Key Legal Principles:

Hacking and Data Manipulation: Alam was convicted for hacking and altering financial data to his advantage.

Financial Fraud in Digital Systems: The court emphasized that digital security is paramount, especially when large sums of money are involved.

Sentencing: Alam was given a 10-year prison sentence, along with a fine. The court also directed the authorities to investigate further to recover the stolen funds.

4. State vs. Md. Shamsuddin (2022)

This case involved an individual, Md. Shamsuddin, who was involved in a large-scale fraud operation targeting victims through fake mobile apps that mimicked financial and banking applications. Shamsuddin and his associates developed apps that allowed them to access the personal and financial information of users. Once they had the necessary details, they withdrew funds from victims’ accounts.

Court Ruling: The court convicted Shamsuddin under Sections 25 and 27 of the Digital Security Act for running a fraudulent scheme using digital means to deceive and steal from victims.

Key Legal Principles:

Fraudulent Mobile Apps: The court noted that using fake mobile applications to deceive victims into entering sensitive data was an emerging form of cybercrime.

Role of Technology in Financial Fraud: The case highlighted the role that technology plays in modern financial fraud and the need for the law to evolve to keep pace with cybercriminal tactics.

Sentencing: Shamsuddin was sentenced to 6 years in prison and a significant fine.

General Observations on Financial Fraud Cases Under the DSA

Cybersecurity as a Priority: Courts in Bangladesh have consistently emphasized the need for strong digital security measures. In several judgments, judges have noted that financial institutions must implement advanced cybersecurity systems to prevent unauthorized access and fraudulent activities.

Victim Compensation: In many cases, judges have ordered that convicted individuals make restitution to the victims of fraud. While recovery of funds is difficult, some cases have involved partial recovery of stolen amounts, with the criminals being ordered to pay restitution as part of their sentencing.

Expansion of Cyber Laws: The Digital Security Act has been interpreted broadly to cover a wide range of cybercrimes, with some cases extending to the fraudulent manipulation of financial records, digital payment platforms, and even stock trading platforms.

Use of Technology in Crime: Many of the cases under this Act highlight the growing sophistication of cyber fraud, where traditional methods of fraud (e.g., bank robbery or credit card fraud) are now being replaced by technological means, making these crimes harder to trace.

Conclusion

The Digital Security Act has proven to be an essential tool in tackling financial fraud in Bangladesh. The case law surrounding financial fraud under this Act illustrates the challenges of cybercrime in an increasingly digital economy. It is evident from the rulings that the courts take these crimes seriously and have started to address the growing concerns regarding cyber fraud, identity theft, and the protection of financial information. As the technological landscape continues to evolve, it is expected that the law will adapt to address new types of fraud and ensure digital security in the country.

Future Considerations

Evolving Technology: As cybercriminals develop more sophisticated methods, there may be an increased need for technological innovation and enhanced cybersecurity measures in the financial sector.

Public Awareness: Public awareness campaigns regarding cybersecurity and digital fraud are crucial for reducing the number of victims. The courts may also focus on promoting education as part of their sentencing in fraud cases.

Global Cooperation: Financial fraud often involves cross-border elements, especially when dealing with cryptocurrency or international transfers. Greater international cooperation may be necessary to combat these kinds of crimes more effectively.