Around 2:46am to 2:52am received sms messages.

The card was just replaced earlier this month because the CVC and expiry date scrapped off.

Most of the purchases were for groceries (tap and pay machine). Towards the third/fourth week only, there were some purchases made on Lazada/Shopee. The Lazada/Shoppee APP and transactions were made on X phone.

OTP is sent to Y phone, registered with the bank.

Its really annoying and I am wandering whether the compromise is X phone, Y phone, Lazada/Shoppee App?

Is there any malware app or app to lock certain apps (like messaging, SMS OTP is sent)?

P/S: called the bank about the unauthorised transaction. card has been blocked and replacement on the way.

This post has been edited by aurora97: Sep 3 2025, 09:39 AM

First, you have to call bank to report unauthorized transaction and terminate your CC then only find the root cause.

This post has been edited by nebula87: Sep 3 2025, 09:29 AM

I also kena one Microsoft purchase for USD 9

Yup, call already. Replacement card on the way.

U will never find out who's fault is this. Bank will issue you new card and reimburse u within 30 working days after u submit dispute

I kena RM 9k before haha
Bugger purchase Walmart

Pakai ABMB Virtual Card aje... minimize exposure of main card.

What's your X and Y phones? for reference purposes.

This post has been edited by svchia78: Sep 3 2025, 10:01 AM

Credit card is safer, the bank will definitely fight back for the disputed transaction

Touch wood, have't kena such a high amount before but its really annoying. Just wandering whether phone is compromised.


X phone = wife phone actually, she use her lazada/shoppee app to buy stuff using my card.
Y phone = this phone, the number registered with the bank but no banking apps. The banking apps all in Z phone.
Z phone = all banking apps are here but OTP send to Y phone.

kena few times by Stan Chart

all the times, card cancelled and replaced.....

Sometimes even a card that never been used before also will kena fraud transaction. Go figure.

Must be leak by internal ghost!

kena once buying things at samsung.com

then
1. fb ads
2. icloud subscription
3. canada online shop

You did the right thing. The bank is also good on sms all trsc triggered to you. Probably 3rd party info compromise happen along the way. Not sure where it happened.

This post has been edited by max_cavalera: Sep 3 2025, 10:20 AM

Just wondering if the card can recreate a new virtual card manually?
As in changing a new card number for security purposes.

Also, does ABMB credit card app allow NFC / wave pay from phone?

Smart move on calling the bank to block the transaction, this happens probably someone stolen your CC info from website or the place where you swiped the card steal your CC info.

A friend just kena few days ago. Same card. $0.50 unauthorized transaction.

inb4 uob has fallen

The main purpose is to create virtual cards to separate them from your main card number. Both are virtual (main and additional cards of different numbers). No physical card at all.

Main card - number is permanent - can wave only for Samsung Pay and Google Pay - some say Apple Pay support "coming soon".

Virtual cards - can create for single-transaction use OR can create for multiple-use with set transaction amount per useand set validity period (as long as within main card's validity). Virtual card cannot be used for wave with Samsung/Google Pay.

E.g. have set up a virtual card for my Hotlink Postpaid for RM100 per transaction and valid same period as my main card.

Another virtual card set up for insurance payment.

check for malware in phone

do any transactions on pc?

last time i bought something on overseas website, then already got 1 unauthorised transaction, funnily enough its an uber.

transaction mainly on mobile. Sreened for malware, nothing.

I suspect is online transactions are the most prone to unauthorised transactions i guess...

Is there any App that can download or buy that can help block or shield certain transaction/messages from being read by third party?