Malaysian banks are improving security features in line with Bank Negara Malaysia (BNM)’s key measures to combat financial fraud.
The measures, announced in December 2022, include:
Transaction cooling-off period
Migrating from SMS and one-time passwords (OTPs) to a more secure authentication method
Single designated device for authorisation
Removal of hyperlinks from SMS and email communications
A 24-hour cyber fraud hotline
In a statement today, RHB Banking Group said it is enhancing security features within its internet banking and mobile banking platforms to identify and eliminate threats of fraudulent activities.
“One of RHB’s security measures is the complete migration of SMS OTP to the Secure Plus transaction authorisation feature for mobile banking and internet banking platforms by this month.
“In addition to the existing measures, we also introduced a ‘Lock Account’ or ‘Kill Switch’ feature where customers can block access to their banking account when fraudulent activity is detected,” RHB said.
The bank is also running a fraud awareness campaign through its corporate website, social media platforms, internet and mobile banking platforms, and across 200 RHB branches nationwide.
Using digital token
Meanwhile, OCBC Malaysia said it migrated all customers to the more secure OCBC OneToken as an additional measure to guard them against falling prey to online scams.
The banking group said with the OneToken feature, SMS OTP authentication is no longer an option for authorising online banking transactions.
It said it also removed all hyperlinks and phone numbers in SMS communications to prevent customers from falling prey to phishing attempts by scammers.
“The OCBC OneToken was introduced in early 2019. It is a digital token available on the OCBC Malaysia Mobile Banking app.
“It allows customers to securely generate an OTP to authorise their online banking transactions and it could only be activated on a single mobile phone at any given time,” it said.
In addition to providing two-factor authentication (2FA) security, the bank said OCBC OneToken has built-in defence capabilities to detect threats on customers’ mobile phones.
Public Bank Bhd also recently introduced the transaction cooling-off period feature via the PBe internet banking and PB engage MY mobile application, which is designed to minimise the risk of unauthorised transactions and potentially fraudulent activities, ensuring the safety of customers’ funds.
“All users of PBe and PB engage MY are now required to activate a more robust two-factor authentication method called PB Secure Sign.
“The activation can only be performed via the ATM, Public Bank branch, and PBe customer support help desk at 03-2170 8000.
“Once activated, the PB SecureSign will undergo a 12-hour cooling-off period. Customers can only start approving online transactions after the cooling off period,” it said.
To further safeguard customers’ online banking platform security, the bank said PB SecureSign could only be activated on a single device which will be used as the primary device responsible for approving transactions.
Public Bank also removed hyperlinks from SMS and email communications and provided a 24-hour cyber fraud security hotline to enable customers to report scams or suspicious activities related to their accounts.
- Bernama
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.