Can I use my old IC to apply ATM card? I thought they will scan the IC first?I had cancelled my IC and they can't do anything with my IC, right. And the PBB is not that stupid to give an ATM card to someone that is so different frm my IC picture.

IMO, it is useless for the victim Felicious or other people,  to now speculate as to how the fraud was committed. The general consensus so far from what i read is that no1 knows and I think it's not necc to waste time wondering how it was done.

The most important issue is "Bank don't wanna take the responsibility. Bank accused that I am the one who did the transaction." - TS

So, the focus should be what Felicious should do to get her money back!

To do so, she must prove that the transaction is not done or authorized by her.

I don't do e-banking at all since i have never trusted it. So I do not 100% know how the process is; but from what i read on this thread, a TAC must be sent by PBB to TS's nominated hp number.

TS says that the telco account is under her mother's name - it doesnt matter as long as she's the one using the hp number and the TAC should have gone to this number.

So, she needs to prove that NO TAC was sms'ed to that HP number on the day of the fraudulent transaction.

It is not for Felicious to prove how the fraud was carried out but only to prove that it was not her to carried out the transaction.

If she can do that, there is no way PBB can refuse to refund her money.

Did you lose your mobile phone, or leave your mobil phone somewhere on that date? h/p security is fallible, because someone can change the number if they have the name and password. It might also be possible to intercept phone data and decrypt it (might take a while though, unless SMS is sent in the clear )

My username n password is used to log in to my PBe. TAC is applied to my phone number.
Nobody in my family can access to my PBe. Impossible my family members took out the money. If so, they will let me know before I make the report.
I asked for the 3rd party account details, but they refuse to give me. I thought I am the victim and I am suppose to know the details? Public Bank can't give me any answer. And the money was actually taken out already. PBB said then it is the police's job.

My phone is always on. The transaction was done on 12.16pm. At that time, I was at home preparing to go college, as my class started at 12.30pm. Or, I might be already at college for class. My handphone 95% is always by my side.

Yes, the bank told me it is my number.

Girls, any updates on police investigations? Perhaps you could press them to work harder.

This case is actually quite simple.

1] Go to bank, ask for the other account holder name & address

2] Detained the person with warrant, investigate on his account, transactions.

3] Cross-reference with felicious report.

That would do the job, aren't they?

I know about the phishing website, but IINM, I never log on to that website.
My house don't have internet connection at that period. I forgot when was the last time I logged on to my e-banking. I logged on to PBB once at night, but failed because DiGi EDGE is very slow that day. But, I am not sure whether is it 25th or not. The transaction was done on 25th noon. If he manage to get my TAC, it is already expired.

By the way, I am meeting an inspector this Sunday. Will update you guys after meeting him.

Inspector said that he can't help me much. All he can do is to investigate the third party. After investigation is done, they will decide to charge the 3rd party or not. However, the money won't be refunded back. The only way to get the money back is to sue the bank. IF I can win the case, the court will order the bank to refund to me.

He said that he handled a lot of this kinda cases before. Almost every bank also have. He mentioned PBB, RHB and even Maybank I am still using Maybank2u...

About the TAC, he ask me to go to DiGi myself.

Nope. I went there alone. My friends were busy on that time. I met the inspector on Monday, as he postponed it to Monday.

Quoted from another thread
I didn't click any e-mails from bank. However, on August, I remember something wrong on PBe.
When I tried to log in, I need to apply TAC, and key in on the website, just like the picture above. After applying TAC, then only I can re-enter my username and password to log in. However, the website has problem, where I can't enter the website at all. Is this the phishing website? Gosh!! Is there any way to track back what website I logged on to on August?

**How to quote attached picture?**

oh and btw, your money is transferred to another guy account? that azshole probably is the one sending the email so, maybe you want to take action against him and check his account, investigate whether they are other complainees? Chances are high IF there are other complainees. If you are alone then, 99.9999999% you wont get back your money.

correct me if i'm wrong but aint pbe TAC requested online can only last for 30minutes?and she said transaction is done at noon the next day. This online transaction for such amount,is it like cheque deposit that needs like half a day period to complete and then transaction time recorded? just want to clear things out

ya its www.maybank2u.com.my   its a typo sorry.

and i just got the tag... its around hr+ after i requested it lol...
and its expired when i received this tags.... thier server seems lagging   

can i know TS's password? i mean is it a combination of numerics and words?

But if they managed to phish for your password it still doesn't explain how they got pass the TAC to bank in to bank accounts other than favourite 3rd parties.

They can't exactly phish for your TAC you know. Cos you get hourly TAC from the original website and it usually works for 1 transaction only. Even with a keylogger after you have done your transaction, the hacker can't take it and used again.

Just a point to ponder.

TS log into phishing website, phishing website ask TS to get TAC before login.
TS go where and get TAC? From the original website? Then go back to phishing website to use the TAC to login again?

Is this the way to get the TAC and pass it to the phishing website?