Maybank reminds customers to stay alert when online

  • Scams to trick consumers with sophisticated scam tactics
  • Fake banking websites contain malware to obtain customer information

Online fraudsters continue to find new ways to scam unsuspecting users, especially given the recent surge in e-commerce activity spurred by the Covid-19 pandemic, according to Maybank Bhd.

In a statement, Malaysia’s largest bank said that as more consumers opt for online transactions, scammers are finding opportunities to trick consumers into using new tactics. sophisticated scam.

In addition to developing fake banking websites or apps (apps) to lure or phish customers, the bank said that scammers have now incorporated malicious components into fake law enforcement apps and fake websites or retail e-commerce applications for accessing customers’ online banking information. such as their usernames and passwords.

A common scam that customers could fall prey to begins when they come across an incredibly cheap offer or advertisement on a social media website, the bank said.

The customer then contacts the third-party service provider/vendor (who is the fraudster) for more information, he said.

The scammer provides the customer with a link and tells them to download an app to participate in the cheap offer and upon installing the app the customer will be prompted to authorize the app to be the SMS service provider by default, he added.

By approving this request, the client effectively provided the fraudster with access to the client’s bank TACs in the future, the bank said.

After installing the app, the customer will be prompted to register with the app commonly asking for information such as name, ID card number, email address and phone number, among others.

Subsequently, Maybank said that the app will direct the customer to a fake payment gateway (fake FPX page) during the checkout or checkout step.

After the customer enters the username and password in this page according to the customer’s bank selection, the page will then show an error message that the payment failed, that is ie: An unexpected error occurred while connecting to the bank server.

According to Maybank, these steps effectively compromised the customer’s online banking account details, as the fraudster now has access to the customer’s username and password, and can also view all incoming TACs in the customer’s device. customer.

Soon after the scammer gets access to these details, the scammer will start transferring funds from the customer’s bank account and the customer will not be aware because he gave permission to the scammer to receive all his SMS messages during of the installation. the previous fake app, he added.

Here are some helpful tips customers can follow to protect themselves when using online platforms:

  • Avoid installing/downloading apps/APK files or clicking on suspicious links sent via chat messages such as SMS, WhatsApp, Messenger or other similar services;
  • Do not allow any app to send or view your text messages;
  • Do not ignore any warnings from your devices, especially when downloading or installing a new file;
  • Do not enter your bank details, especially your username or password, into suspicious apps or websites;
  • Always keep your anti-virus software up to date for constant protection;
  • Only download apps from genuine app stores such as App Store, Play Store or Huawei AppGallery and not from any link;
  • Be careful if you are prompted to download a file that is not compatible with your device, for example: an iPhone/iPad prompted to use an Android device to download a file;
  • Always look for your online bank’s image and passphrase (i.e. Maybank2u image and passphrase), to ensure that the website and app are legitimate;
  • Do not root or jailbreak your device; and
  • Regularly update your mobile device’s operating system and applications.

If a customer suspects their online banking account details have been compromised, remove the app and scan the device with antivirus software, Maybank said.

Then change your online banking account password and contact Maybank’s anti-fraud hotline on +60358914744 for assistance, he added.

Maybank said it continuously shares informative content on its Maybank2u website and on Facebook and Instagram, with the aim of reminding and educating customers about the dangers of malware scams.

Customers should regularly pay attention to these reminders so that they are aware of the latest scam methods to protect themselves, he said.

At the same time, the bank would like to remind customers to continue to remain vigilant about other scam tactics such as SMS/email phishing scams, phone calls alleging that customers have committed some sort of crime , parcel payment, etc. aim to obtain customers’ bank details or trick them into transferring their funds to fraudsters.

Maybank stressed that the safety and security of its customers’ funds and online banking transactions are a priority at all times.

The bank said its online banking platforms and applications are secure, safe and use strong security controls to combat cyber threats.

However, customers are reminded to do their part to protect themselves at all times by ensuring that their online banking details are kept safe and are never shared with any third party, knowingly or unknowingly through malware or of any phishing attempts, he added.

Comments are closed.