6. Scammer can get banks to reissue a new CC, or if they already have your username and password, you GG because now any new sms from banks to you will be sent to the replacement sim card which is being held by the scammer.

*Happened to my friend's dad* A big foreign bank in Malaysia who is famous with issuing CCs wanted to sue my friend's dad* The suit was thrown out eventually.

I'm not sure with this, perhaps there could be other ways to bypass this. Perhaps a replacement credit card sent straight to the home address? It is easy getting CC replaced without going to the bank.

Nowadays you don't need to go to banks to get things done.

their website is down

if got special characters and >= 8 characters, it will pass to server as it is
else it will chop off after 8 characters.

topkek betul. that's why your password + any characters behind still can pass

amazing lul

Just now changed password never key in captcha geh

Just sharing, about the debate on truncate overflow password (Any characters over the given limit will not take into account).

As far as I know, it's pretty common in Malaysia bank, i can confirm Maybank and Public Bank implement this way too. (At least for me since my password pretty long, missing few last characters still able to login).

Did you guys follow the hint given when changing the password?