Heaptalk, Jakarta — One of PT Bank Central Asia Tbk (BCA) customers in Salatiga named Evita, reported losing a balance of US$4,412, or approximately Rp68.5 million, after performing transactions via the QRIS feature on September 26th, 2023.
Evita said that this incident occurred when she failed to make a transaction due to an insufficient balance. Further, she checked the balance in her account for only Rp10 million. When checking account mutations, this BCA customer also found a QRIS transaction worth Rp4 million in the morning.
Following this issue, Evita immediately contacted Halo BCA to block her account because she claimed her account had been hacked. However, the company’s report demonstrates that the transactions were carried out from 23 – 26 September 2023 via a similar QR Code with a nominal value of Rp1 million, which was carried out repeatedly.
Nevertheless, she emphasized that this transaction was impossible because she was in a location with an unstable signal during that period. She also elaborated that her phone was only used for particular transactions, and only she had access to it.
“I never received this OTP because my phone is private, specifically for m-banking only. My phone has never installed any application.” Evita affirmed, as cited in bisnis.
In response to this issue, EVP Corporate Communication and Social Responsibility of Bank Central Asia, Hera Haryn, said, “Responding to a complaint from one of PT Bank Central Asia (BCA) customers regarding QRIS transactions using BCA Mobile, we would like to convey that the company always carries out business and operations following the applicable rules and regulations.”
According to her statement, the company explained that the authorities still handle customers’ complaints. In providing services to customers, the banking company, with an issuer code BBCA always strengthen the customer security by asking its customers to put an access code and personal identification number when they make financial transactions on BCA Mobile.
For this reason, this banking company continues to urge its customers to secure their confidential data, such as PIN One Time Password (OTP), Password, BCA Response Key, access code, Card Verification Code (CVC), and Card Verification Value (CVC), to any party.
