25 October 2022
New users will only be able to register a single device to access the App, whilst existing users are urged to proactively deactivate their non-primary devices before March 2023.
Kuala Lumpur: CIMB Bank Berhad and CIMB Islamic Bank Berhad (collectively “CIMB” or “the Bank”) announced today that in line with the enhanced security measures against scams announced by Bank Negara Malaysia (“BNM”), it will implement a single registered device for authentication for its CIMB Clicks App (the “App”) effective end of October 2022. All new and existing users who download or re-install the App will only be able to register a single device to use the App and its SecureTAC authorisation feature, with that one primary device to be paired to a CIMB Clicks ID at any one time.
For existing users who currently have two registered devices, the Bank will also be initiating its migration exercise to a single device, which is targeted to complete by March 2023. The Bank is taking a phased approach in implementing this new security measure to ensure customers will have sufficient time to adapt. Post this migration period, the Bank will automatically deactivate non-primary registered devices on the CIMB Clicks App.
For uninterrupted banking services, CIMB urges all customers to proactively review their CIMB Clicks App settings and remove non-primary devices, e.g. secondary devices or devices that are no longer in use, as soon as possible before March 2023.
To deactivate non-primary devices, customers can follow these steps:
1. Log into the CIMB Clicks App using your primary device used for banking on the App
2. Scroll left on the home screen to find ‘Settings’ > refer to ‘Other Registered Device’ to check if there are other devices registered
3. Swipe left on the device name > Tap on the “Delete” button (in red) and confirm the deletion.
Once completed, the other device should no longer appear on the ‘Settings’ page under the ‘Other Registered Device’ section and an SMS notification will be sent to alert on the deletion. Customers are also advised to be attentive and take immediate action should they receive any notification of a new device being activated using their account, if the activation was not performed by them.
Customers who have any queries on the implementation of the single registered device can contact CIMB’s Consumer Contact Centre at +603-6204 7788, which is available 24/7, or visit www.cimbclicks.com.my/srd for more details.
Samir Gupta, Chief Executive Officer, Group Consumer Banking of CIMB Group said, “CIMB is committed to ensuring that our security measures are continuously enhanced and tightened to protect customers against scam, and the implementation of a single registered device for our mobile banking app reflects this commitment. We understand that this measure may impact some customers who legitimately use more than one device for their mobile banking needs via the CIMB Clicks App. However, we believe that this is the right step as an additional measure to help ensure our customers’ funds and transactions remain secure.”
With the introduction of the single device for its App, CIMB is pleased to be able to start implementing the additional measures outlined by BNM to combat banking scams. The Bank will continue to proactively introduce enhanced security measures as planned in the coming months as part of its on-going effort to safeguard customers from fraudulent activities.
Customers are reminded to only download the CIMB Clicks or CIMB OCTO Apps from genuine app stores such as the Apple App Store, Google Play Store or Huawei AppGallery, and never from a link or unknown sources.
In addition, customers are reminded to always be vigilant and safeguard their online banking details. Those who detect unusual or suspicious activity or transactions involving their bank accounts to immediately:
- Notify the Bank by calling CIMB’s Consumer Contact Centre at +603-6204 7788 (available 24/7);
- Change their account password/PIN; and
- Lodge a police report to facilitate the investigation.