Grab customer care is not responding. They are clueless.

Are they going to blame affected user & runaway from this matter?

i use a sort of "throwaway" debit card to solve the problem and link to that bank. Recently used a bank called "Rize" - a digital bank where signup takes 5-15 minutes, then u can request for a free debit card and link it with that. In that bank account u just do duitnow transfer every now and then limit to about 300-500 RM (or the amount u willing to lose in case hacker managed to steal the money) so you wont lose everything in case kena hacked. That's one way to do it.

I manually transfer money and its not difficult once u add it to your favorite.

Same concept like duitnow. Hack can hack rise & disperse your $$$ through a gateway.

If rize has breach in their security, no way you can escape. Some unlucky user will be targeted innocently.

that's why i call it a throwaway debit card account. hack also i lose whatever little is in there - i decide. Its not my salary account or main banking account so hack away. Yes i lose money but as I said - only amount I am willing to risk and lose.

i only use grab for transport,.. so never use their wallet on anything else,.. no grab food,.. no grab pay,..

I'm not well versed with Grab API but if its similar to payment gateways, I don't see how Revenue Harvest can even get customer payment tokens without them logging into customer's Grab account.

One of the guys that kena has gotten his money back through his grabpay wallet and bank account (but unsure if received by bank as he had blocked the account):
https://www.reddit.com/r/malaysia/comments/...allet/?sort=new

Good luck if got use paylater. Cannot simply remove your CC without getting paylater deactivated through Grab customer service

What is Bank Negara doing? All their so call fintech have security like cap ayam and so easy to bypass. Award so many licenses, security all meh.

top notch western system also being espionage

https://www.pcworld.com/article/1478487/350...l-accounts.html

sohai grab cant even top up without saving cc? I removed all cc .. now need top up .. need add cc and remove again lol .. when this shit gonna be over

some bank charge for adding card in online apps

Where got suxh thing

charges are at grab/merchant side. Grab charges RM5 if i recall but they refund immediately. TNG charges RM1 but depending on back, might not get back immediately..mine for TNG i didnt get back even my RM1 but not fussed up about it..at least grab refunds immediately when u make card payment - this is to "test" to ensure your card is legit.

weh i link my bank account for easy grab topup liao

Not sure about shopee but for lazada unless recent update (haven't update the app yet) change it, it is not mandatory to save cc info.

Recently lots of app UI have arsehole design. It prompt you to save the info but the option to not doing so is hidden away from view. so do scroll around abit.

Some banks or platform have one time charge, but will be refunded.

I'm not too sure as well, but the pattern suggests it. Since not everyone's facing the problem, just a handful of people and revenue harvest is the common denominator. My guess would be the token being captured somehow by a POS/Terminal that the customer use grabpay to pay with. Websites "should" redirect to grab's servers so no token exchange in the process.

Would be a huge security flaw to allow tokens to be captured by 3rd party and for it not to be a single-use token. Grab has some accountability here as well.

Maybe using China Brand andriod phone ?

one of the guys thar kena is using iphone so its not android or apk related