Safe Online Banking


What is phishing?
Phishing is a tactic used to obtain sensitive information for malicious intent by impersonating a trustworthy source, such as a bank. This is usually also referred to as ‘baiting’ the victims.

Scammers will trick the victims into giving out their login/user IDs, account details, passwords, PINs and other sensitive information to gain access to the victim’s banking accounts or for identity theft.

The most common modes of phishing are via SMS, telephone calls and emails.
What are the possible risks/implications if I have given the scam caller my details?


What should I do when I get an SMS stating I have performed a credit card transaction that I am not aware of?
Immediately call the bank’s customer service number stated at the back of the credit card or on the bank’s website or here to check whether such a transaction has actually been charged.

Do not call the number provided in the SMS if you are uncertain or suspect dubious activity.
I called the number stated in the SMS and they started asking me for the details like my credit card number, TAC code and other sensitive information. What should I do?


What should I do if I get a call from someone claiming to be an officer from my bank who asks me to give my details over the telephone for reasons of updating my banking records?
Banks will never call to ask for sensitive information from customers. If in doubt, hang up and check with your bank by calling the customer service number stated on the back of your credit card, on the bank’s website or here or go to the nearest branch for verification.
The number that appears on my mobile phone is the same as my bank’s official number. Can I trust that it really is a call from the bank?
I received a call from a bank to verify a charge to my credit card for a large purchase but I don’t even have a credit card from that bank. What should I do?
I received a call from a bank and a voice recorded message said that my loan payment is due but I don’t have any loans from that bank. What should I do?


I have been receiving emails from banks saying that my bank account has been suspended/about to receive a huge sum of money, etc. The email asked me to click on the link provided to verify my details. What should I do?
Never click on links or icons in unsolicited e-mails and do not reply to such e-mails. Delete them immediately.

In a new browser, go to the bank’s legitimate site by typing the bank’s website/URL directly into the address bar. The online banking sites of all Malaysian banks are secure so please look for the closed padlock icon next to the website address. The site should also begin with https:// instead of http://.


How do I know if the bank’s website is a secured website?
How do I protect myself from unsolicited fraudulent or scam mails?

ABM Connect | Toll-free on 1300-88-9980

ABMConnect provides an avenue for consumers to clarify any doubts and verify information on conventional banking issues.

Copyright © 2021 The Association Of Banks In Malaysia.
Press enter to search
Press enter to search


The Association of Banks in Malaysia (ABM) was formed in November 1973. Our membership is currently made up of the 26 commercial banks operating in Malaysia.

Since its inception, ABM has been actively involved in various initiatives to promote and strengthen the commercial banking industry to become more resilient, effective and efficient.

Tel No. : +603-2202 7223
ABMConnect : 1300-88-9980

Location Map

View larger map