Maybank to migrate from SMS OTP to Secure2u
By Digital News Asia September 29, 2022
- Inline with Bank Negara’s directive to secure authentication
- To introduce cooling-off period for customers to enable Secure2u
Maybank will fully migrate to a more secure authentication method via Secure2u by June 2023 for online activities or transactions relating to account opening, fund transfers and payments as well as changes to personal information and account settings.
In a statement, the bank said this is in line with Bank Negara’s aim for banks to migrate from SMS One Time Passwords (OTP) to a more secure authentication for these transactions.
Currently, Maybank said it only allows one Secure2u device per account holder to minimise the possibility of a customer’s online banking details being compromised or used by any third party.
As an added security measure, the bank said it alerts a customer via SMS, a push notification and an email when Secure2u is registered on a new device.
Khairussaleh Ramli (pic), group president and chief executive officer of Maybank said this is in line with the bank’s effort to prioritise at all times the safety and security of its customers’ funds and online banking transactions.
“We remain highly committed in helping our customers to avoid being scammed by fraudsters.
“This is done through existing security measures that are already in place and as we progressively roll out more measures that can help deter or minimise the likelihood of customers falling prey to financial scams,” said Khairussaleh.
He said the bank is supportive of Bank Negara Malaysia’s announcement on Sept 26 in relation to the five measures to be adopted by banks in Malaysia to ensure higher standards of security, especially for Internet and mobile banking services.
“The banking industry is committed to working together to combat financial scams which are increasingly prevalent in today’s digitalised environment,” he said.
Additionally, Maybank will introduce a cooling-off period when customers enable Secure2u on a different device to help prevent unauthorised Secure2u approvals by the fourth quarter of 2022.
The cooling-off period before the activation of Secure2u on a new mobile device will provide sufficient time for customers to verify and report to the bank in case of any unauthorised registration, Maybank said.
It said the bank introduced the usage of Secure2u in April 2017 as a safer and more convenient way for Maybank customers to authorise Maybank2u and MAE transactions.
It uses using secure verification (one-tap approval) and secure transaction activation codes (a six-digit TAC number generated on the mobile app), Maybank said.
This feature is an alternative to SMS TAC, it said.
The introduction of the cooling-off period for first time enrolment of Secure2u or when a new device is registered on Secure2u is an added measure that the bank will implement in an attempt to mitigate the rise in financial scams seen nationwide and in an effort to continuously safeguard Maybank’s customers’ account details and funds.
In terms of tightening fraud detection rules and triggers for blocking suspicious transactions, Maybank said it has a fraud detection and monitoring system with customised rules and additional risk parameters.
Besides that, the bank has in place a call back verification process to alert customers of suspicious transactions, it added.
Maybank said it already has a dedicated 24/7 hotline for customers to report financial scam incidents.
Customers are urged to contact the fraud hotline at +603 5891 4744 immediately if they suspect their banking details have been compromised or that a suspicious transaction has taken place or even if they would like to suspend their bank account swiftly, it said.
Alternatively, customers can contact Maybank Customer Care Hotline at 1 300 88 6688 on the above. This will enable the bank to promptly assist customers in preventing further losses immediately.
Maybank said it will continuously share informative content on its Maybank2u website and on Facebook and Instagram, in an effort to remind and create awareness among customers on the dangers of scams.
It added that customers should regularly pay attention to these reminders so that they will be made aware of the latest scam methods to protect themselves.
Customers are also reminded to continuously protect themselves by ensuring their online banking details are kept safe and never shared with a third party, either knowingly or unknowingly through any scam attempts.
Related Stories :