Though some users may rely on accessibility features such as screen readers or text to speech functions, the bank said in an FAQ that such services may be exploited by fraudsters to potentially record confidential data. — RAJA FAISAL HISHAN/The Star
As part of an effort to combat fraud and scams, CIMB said it is introducing a built-in feature to detect screen sharing and accessibility mode on users’ devices.
“If you have enabled screen sharing and accessibility permissions for certain apps on your device, you will receive a pop up alert about this when you use CIMB OCTO App or CIMB Clicks App,” it said in an announcement today (Aug 19).
The bank added that to continue using the two banking apps, users must disable screen sharing and turn off accessibility permissions on the other apps and/or uninstall them from their mobile device.
The bank said the enhancement aims to protect users from potential fraud associated with malware that exploits screen sharing and accessibility permissions.
Malware is malicious software that infiltrates devices through deceptive emails, compromised downloads, or unsafe websites, often leading to unauthorised control of systems or data.
The bank said it has introduced the anti-fraud enhancement for the CIMB Octo App since June 27 while CIMB Clicks App will start receiving the feature today.
Though some users may rely on assistive technology such as screen readers with a voice synthesiser and Braille display and/or text-to-speech functions, the bank said in an FAQ that such services may be exploited by fraudsters to potentially record confidential data.
By disabling such accessibility services, users will not grant these apps permission “to read the text on the screen or record characters typed with the keyboard on your device such as your mobile banking credentials”, the bank elaborated in the FAQ.
The bank assured users that their bank account is “not at risk” despite receiving the alert.
“This is a safety measure to remind you to turn off accessibility permissions for app(s) downloaded from unknown sources”, intended as an “added security measure to further strengthen your protection against fraudsters installing malware on your device”, CIMB added.
On Aug 9, the Association of Banks Malaysia (ABM) and the Association of Islamic Banking and Financial Institutions Malaysia (AIBIM) said banks in Malaysia will be rolling out a malware shielding feature to be embedded within the banks' mobile apps.
The feature aims to prevent unauthorised transactions and prevent users from becoming victims of malware scams.
