Security Advisory - Banking Security Tips | OCBC Malaysia

Your security matters to us

online security tips
  1. Do not entertain calls on any outstanding credit card/personal loan or incoming fund transfer from Central Bank Malaysia.
  2. Do not entertain calls from Malaysian Anti-Corruption Commission (MACC) or any other government bodies regarding the settlement of money laundering or criminal charges.
  3. Do not reveal your account information such as login username, password, security image, security phrase, OTP and Challenge Code to a third party or to our bank's staff. If in doubt, always call the official OCBC contact number listed in our website.
  4. Beware of phishing and malware. Do not click on any links provided in email, SMS, messaging apps or social media.
  5. Remember to use a combination of alphabets (including capital letters) and numbers to build a strong password. Your password should be between 8 to 12 characters. Remember to change your password regularly.
Signs of fraud
What to Do If You Have Been Scammed
  • Call us immediately
    1. If you have fallen victim to scams or if you suspect that your OCBC account details or funds may be compromised, please call our Personal Banking Hotline immediately at 8317 5000 (or 603 8317 5000 if you are overseas). Press 8 to report scam and temporarily block all your accounts and cards.
    2. You can also block it yourself by activating the OCBC Kill Switch through your OCBC Malaysia Mobile Banking app. After blocking your accounts and cards, you will still need to call our Personal Banking Hotline to report the scam.
  • File a report with the police
    1. Please make a police report at any police station as soon as possible. This will enable the police to start their investigation into your case.
    2. You can follow-up on your case with the police by:
      1. Checking online via https://sso.rmp.gov.my
      2. Contacting the police investigating officer assigned to your case.
  • Information you will need to provide if you have been scammed
    1. Chronology of the incident
    2. Financial loss (RM)
    3. Your details:
      1. Full name
      2. NRIC no/Passport No
      3. Contact number and email address
      4. Impacted bank account number
      5. Phone model and version during the unauthorised transaction
      6. Information disclosed, i.e. personal details (name, NRIC and birthdate) and banking details (account number, Internet Banking login ID, Password, OneToken Activation Code, One Time Password (OTP), OCBC Debit/credit card details)
    4. Details of the unauthorised transaction:
      1. Beneficiary account details, i.e., Bank name, Bank account number, Name of account owner
      2. Transaction details: Amount (RM), date, time
      3. Details of the third-party involved (if any)
    5. To help facilitate the investigation process, the bank may also request additional information.
  • What can you expect after reporting to the bank of an unauthorised electronic banking transaction?
    1. You may receive a follow-up call from the bank within 3 working days to guide you through any other necessary actions or information required from you.
    2. The bank will respond to you on the resolution within 14 working days from the date you reported the scam.
Need Help?

Let us clarify your concerns about security