Security and Privacy
Measures to Protect You From Scams
Rising trend of malware scams
With the rise of malware scams, scammers are applying sophisticated tactics to trick customers into downloading malware through malicious applications. Once your mobile device is compromised by malware, scammers can exfiltrate sensitive information such as banking credentials and one-time passwords received via SMS. They can also exercise remote control over the compromised device to execute illicit financial transactions without your knowledge or consent.
What we are doing to protect you
At Maybank, we continually enhance our security measures to protect your privacy and confidentiality. In our commitment to providing you with a safe and secure banking experience, our new security measures will alert you if we detect any sensitive permissions granted and the presence of potential malware on your devices.
On launching the M2U SG (Lite) app, your access to mobile banking services will be restricted when it detects:
Unofficial M2U SG (Lite) App Downloaded
Why am I seeing this?
We detected that the M2U SG (Lite) app was not downloaded from the official app store.
Uninstall the M2U SG (Lite) app and download from the official app store.
Suspicious Android Package Kit (APK) Files(s) Detected
Why am I seeing this?
The app(s) installed was/were not from the official app store(s) and has risky permission settings which may compromise your device and your security.
Uninstall the stated app and download from the official app store.
Blacklisted malware application
Why am I seeing this?
The app(s) stated was/were found to contain malicious software.
Disconnect your device from all connected networks (Wi-Fi and Bluetooth), by turning on flight mode and uninstall the stated app(s).
Rest assured that these security measures do not monitor nor conduct surveillance on your mobile devices, nor do they collect or store any personal data.
Maybank’s measures to protect you from scams
Your online banking security is a priority for us and we are constantly looking for ways to keep you protected. As scams continue to evolve, we must stay alert and look out for the signs to avoid becoming a victim of one. In consultation with the Monetary Authority of Singapore, we have implemented stricter measures to lower the risks of online fraud.
To bolster the security of digital banking services, we have implemented additional measures to prevent, detect and manage scam incidents. Click Frequently Asked Questions on the additional security measures to protect you against scams.
Suspend digital banking access in the event of a scam
As a Maybank customer, you have the option of suspending your digital banking access or changing your password.
Suspect that you’re a victim of fraud? Call our hotline at 1800-MAYBANK (1800-629 2265) or (65) 6533 5229 (Overseas) and press *1 or Option 4 in the main menu to suspend your Maybank2u online and mobile banking access immediately.
Alternatively, login to Maybank2u Online Banking and select ‘Settings’ > ‘Security’ tab > ‘Kill Switch’ to suspend your Maybank2u online and mobile banking access.
No clickable links in emails or SMSes from Maybank
Maybank has removed all clickable links from its emails and SMSes since 31 January 2022. If you have received a message from Maybank with a clickable link, it’s likely that the message is not legitimate.
Restricted or disablement of mobile banking app when suspicious applications are detected
If suspected malware or malicious app(s) is/are detected on your mobile device, Maybank will trigger a pop-up warning message or disable your mobile banking app when you launch the M2U SG (Lite) app.
Dedicated customer service teams to assist you with fraud and scam related matters
Call 1800-MAYBANK (1800-629 2265) or (65) 6533 5229 (Overseas) and press *1 to report any unauthorised transactions made to your account(s) and lodge a police report.
Default threshold to receive transaction notifications is revised to S$100
Transaction notification alerts have been set at $100 by default for all customers. You may log into Maybank2u Online Banking to change your default transaction threshold.
Delay of at least 24 hours to activate a new Secure2u digital token on a mobile device
As a security measure, you can only use Secure2u to authenticate transactions at least 24 hours after registration. You will be able to use the physical token to complete your transactions in the meantime.
Notifications will be sent to existing registered mobile number and/or email address if there is a request to update customer’s contact details
This is a security measure to verify that you have given the instruction to the bank to update your contact details. The alert will be sent to the mobile number and/or email address registered with the bank.
Additional security protection on transactions
Maybank has introduced a cooling period to perform selected payment transactions after a new payee has been added. The bank will also send you an email alert when there is a new browser or device login to your Maybank2u Online Banking to notify you in case of any unauthorised logins.