What do I need to do to perform online banking safely?
Online banking has made it easy for us to perform banking at any place and time. It is important to keep this in mind while banking online:
Ensure that you are logged on to the correct web address
Never access internet banking through hyperlinks embedded in emails or potentially untrustworthy sources
Keep your login details and password confidential
Avoid using easily guessed information as password (such as birthdates etc.)
Do use a mixture of symbols and alphanumeric characters when creating a password
Avoid accessing your online banking with public computers or public WiFi
Only use trusted wireless networks. Add a password for your own home network
Install licensed anti-virus and malware protection software on your devices and update the software regularly
Review transaction records regularly and report any suspicious transaction to CIMB Business Call Centre or CIMB representative.
Download the official mobile banking app and update it regularly.
How do I protect my personal information?
Always log out when you have completed your banking transaction
Change your password regularly, memorise it and never write it down
Ensure you do not disclose your user ID, password and passcode to any person, via emails or on any website or over the phone other than the official website of the Bank or CIMB Business Call Centre
CIMB will not display your personal information in emails or ask you to provide any personal information including your username, password and/or security code by email
CIMB will not ask you to divulge any of your security details over the phone, by text message or via email
If in doubt, stop. Do not click on any links or open any attachments.
How do I protect my Internet Banking / BizChannel@CIMB App details?
'Secureword' will be displayed upon entering User ID on BizChannel@CIMB website or app, if the wrong 'Secureword' is displayed or not displayed. Please close the window and start again.
Always update your devices with the latest Operating System
Do not click on links or open email attachments from unknown / unreliable senders/sources. Emails from CIMB will always end with @cimb.com.
How do I safeguard myself against SMS/phone call scam?
Do not respond to SMS or call from unknown person asking for your credit/debit card or online banking details.
Do not respond to any SMS or call that claiming it's coming from Bank Negara. Their officer will never call you to ask for your credit/debit card or banking particulars.
If someone claiming to be from your card service provider calls you and asks you to confirm the security numbers on the back of the card (the last three digits on the back of the card), you should end the call immediately.
If you are ever doubtful about your BizChannel@CIMB activities or the authenticity of incoming telephone calls purporting to be safe from CIMB, please call CIMB Business Call Centre or your CIMB representative for further verification.
How secure is this service? What are the security measures used by this service?
BizChannel@CIMB employs a 128-bit Secure Socket Layer (SSL), which is one of the strongest encryption technology used by large-scale online merchants, global banks, and brokerages worldwide.
All online sessions between you and the Bank are encrypted thus protecting your information against disclosure to third parties. To ensure high level security, this service employs “Two-Factor authentication” (2FA) to verify user authentication and validation. Thus it is fully compliant with the Malaysian regulatory requirements for Online Banking.
What is encryption and how is it used to protect my information?
Encryption is a method of scrambling your information prior to its transmission across the Internet. Encryption transforms data into an unreadable form, and decryption reverses the process. Both encryption and decryption require the use of a special code, usually referred to as “encryption key”. The encryption of data provides a strong degree of protection against tampering while data is moving through the Internet.
What is “Two-Factor-Authentication”?
Two-factor-Authentication is a security process requiring the user or customer to provide means of identification from two different channels.
In BizChannel@CIMB we make use of your Login Credentials (username and password) and One Time Password (OTP) from either SMS or Security Device. The two factors authentication referred as “what you have” and “what you know”.
What precautions should I take while using BizChannel@CIMB?
In addition to ensuring the confidentiality of your password and safeguard of Security Device, you should take the following precautions:
If you suspect that the confidentiality of your PIN has been compromised, change your PIN IMMEDIATELY.
REMEMBER TO LOG OUT and close your browser whenever you leave your computer, even for a short while.
Safeguard the Security Device in a secured place.
Clear your browser's cache on a regular basis so that your account information is removed. This is especially important if you are using a shared PC. You should clear it after each session.
Always use our recommended internet browser so that you are using the most updated security features available.
Contact us immediately if you notice any unusual transactions on your account.
What precautions should I take when using shared/public PCs for this service?
We strongly recommend that you avoid conducting your transactions on public or shared PCs. If you really need to, please clear the browser cache after each session so that your account information is removed from such PCs.
How can I enable my browser to use SSL encryption?
For Internet Explorer 8 to 11: - Go to "Tools" - Go to "Internet Options" - Click on "Advance" tab - Under settings, scroll down to the bottom and checked TLS 1.0, TLS 1.1 and TLS 1.2 - Click "OK" to save settings
For Google Chrome: - Go to settings - Scroll down to the bottom and click on "Show advance settings" - Scroll to network section and click on "Change proxy settings" - Under settings, scroll down to the bottom and checked TLS 1.0, TLS 1.1 and TLS 1.2 - Click "OK" to save settings