Starting from 2nd May, mobile users in Malaysia will not be able to send or receive SMS that contain links from certain mobile numbers. This is due to a directive from the Malaysian Communications and Multimedia Commission (MCMC). Maxis was the first telco to announce this and others like CelcomDigi, U Mobile, and Unifi Mobile are also following the directive. The SMS blockage is being implemented in stages, starting with SMS sent to or received from local and international mobile numbers. Unifi Mobile has already sent an SMS alert to inform its users about this change.
Maxis will block SMS containing URLs sent by business shortcodes (6XXXX, 2XXXX, and 1XXXX) later, and will notify the business users beforehand. This gives businesses time to switch to app-based or instant messaging-based platforms for sending promo messages and links. If you want to share links with your contacts, you can use other instant messaging or social media platforms like WhatsApp, Facebook Messenger, WeChat, Telegram, etc. The Malaysian Communications and Multimedia Commission (MCMC) directed all telcos to block links sent via SMS to prevent users from falling victim to online scams. This is a big problem despite various public service announcements.
Many people have been tricked into clicking on links that promise cash aid or rewards, which then take them to fake websites. These websites ask for login details and Time Passwords (OTPs) that are then stolen by scammers. The victims often don’t realize that they’re being scammed because the fake websites look like the real thing. To protect yourself, only log in to your online banking or eWallet accounts through the official app or website. Don’t download or install apps from outside the official app store, as they can put your phone’s security at risk.
Bank Negara Malaysia has asked banks and eWallet providers to stop using SMS-based OTP, as the sender name can be faked and the OTP can be copied by malware. Instead, banks are using app-based SecureTAC to authorize transactions and a cooling-off period to delay scammers from accessing accounts on different devices. If you’ve been scammed or know someone who has, call the National Scam Response Centre (NSRC) at 997 immediately.
