Scams are on the rise and cybercriminals are using various tactics to gain access to online banking and eWallet accounts of Malaysians.
Dr Rafidah Abdullah, a Nephrologist based in Malaysia complained about CIMB Bank’s security measures after RM13,000 was taken out from her account in the early hours in the morning.
According to her social posts, there were three CIMB Clicks transactions performed on her account between 2:00 and 2:30am which were completed without any TAC verification. She said the situation was ridiculous and has lost faith in the bank. A formal report was made with the police and CIMB.
In a newer update posted this morning, she revealed that she’s using an iPhone which rules out the possibility of malware apps which are often associated with downloading dodgy APK files on Android. The doctor also deleted all apps and performed a device reset as an added security measure. She also revealed that her funds were transferred to a Hong Leong Bank account.
Subsequently, she shared another update after receiving a call from CIMB. According to her post, CIMB alleged that she clicked on a link several days ago which allowed another iPhone 6 to be registered to her account, which she has denied. She also questioned why there was no TAC required for registration of a new device and to authorise the transfer of RM13,000 worth of funds. Dr Rafidah demanded CIMB to step up its security and contact customers if there’s a new device registration or a change of number.
CIMB posted a public service announcement reminding all customers to be vigilant and to do their part to protect themselves from cybercrime. It urged all users not to share their OTP, card number, username, PIN, TAC, or passwords with anyone or to enter them on any website other than CIMB Clicks or their mobile apps. They have also provided a link to their security and fraud awareness page which highlights what you can do to protect yourself online.
Unsatisfied with the response, Dr Rafidah emphasised that security is also the bank’s responsibility and urged CIMB not to shift the blame to customers alone. She also called upon others to “make noise” until CIMB tightens their security. Dr Rafidah said innocent customers shouldn’t be blamed by the bank. She demanded Bank Negara Malaysia to take appropriate action against banks that don’t have SOP or have security issues as soon as possible to protect consumers.