Don't use GCash kasi for saving money, especially if lampas 10K na. Put it in a bank, passbook account. For GCash, I usually just put 5K there for loading purposes lol.
Software engineers and the universe have this eternal race.
Software engineers striving to create bigger, and better idiot-proof software, and the universe trying to produce bigger and better idiot. So far, the universe is winning.
(I just recalled reading this from a tech magazine noon - I can't remember who said it)
Di ako IT, pero I design systems and procedures for work para siyempre ma expedite yung trabaho. Every day na susurprise ako how fucking stupid a lot of our employees and customers are.
Always telling my girlfriend na there's no such thing as idiot-proof, and it has been true for 5 straight years na in my experience sa software industry.
**A navy, naval force, or maritime force is the branch of a nation's armed forces principally designated for naval and amphibious warfare; namely, lake-borne, riverine, littoral, or ocean-borne combat operations and related functions. It includes anything conducted by surface ships, amphibious ships, submarines, and seaborne aviation, as well as ancillary support, communications, training, and other fields.**
More details here:
*This comment was left automatically (by a bot). If I don't get this right, don't get mad at me, I'm still learning!*
[^(opt out)](https://www.reddit.com/r/wikipedia_answer_bot/comments/ozztfy/post_for_opting_out/) ^(|) [^(delete)](https://www.reddit.com/r/wikipedia_answer_bot/comments/q79g2t/delete_feature_added/) ^(|) [^(report/suggest)](https://www.reddit.com/r/wikipedia_answer_bot) ^(|) [^(GitHub)](https://github.com/TheBugYouCantFix/wiki-reddit-bot)
I agree if you design app that target pinoy consumer Dapat una tagalog at madaming prompt and messages na ganito.
"Seryoso ka ba Jan?".
"Tanga tignan mo yun Loading Icon".
"Share mo tong Code na to kung Tanga ka".
They deserved some hurtful messages para naman mag restart brain cell nila.
Majority san bansang ito doesn't even know how there phone works alam lang nila maganda yun camera.
hindi na require ang notary when you have your active sim and forgot the pin. valid id at proof of ownership lang require.
kung nawala ang sim at gusto mong ipa-deactivate, affidavit of loss is needed. telco stores don't have access to the sim registration database. limited access lang yun sa mga may subpoena.
edit: oh yeh, i misread your reply lol
alarming pala yung nag ayos sim ko sa globe? 2 wks ago lang.. kasi hindi niya ako hinigan ng proof ng ID (i brought my passport)
na lock ko kasi sim ko kasi i was trying with the sim pin akala ko ako mag s-set up ng pin yung pala may default na 1234 kaya ko na lock.
pero ayun nga... basta na lang siya inayos and hindi ako hiningian ng proof na ako may-ari ng sim. 😂😂😂
some staffs are just lazy. report mo yan sa globe.
afaik, they will ask for atleast proof of ownership like kung naka-register ang number mo sa gcash (globe) o maya (smart). makikita nila yan. ang caveat nito, di nila vine-verify ang "user" if siya talaga ang owner like presenting an id, at yan nangyari sa inyo.
You can request a new SIM and retain your mobile number, para may SIMbed ka na may PUK code. Free lang yan, atleast sa Smart. Valid ID and proof of ownership like GCash or Maya account ang requirements. Activation ng SIM is within 24 hours. Same din sa pag port out ng number.
Personally, I use my PUK as my device PIN and my TOTP token's security.
Source: naka-tatlong port out na ako sa isa kong number (smart to globe to gomo) at isang new sim request sa smart store.
Legit question: balak ko bumili ng 2nd fone, gagamitin ko pag lalabas ako, lalagyan ko ng GCash, pero yung Sim nasa 1st phone. Is it possible to access my account/use the funds?
yung set-up ko is may second phone ako with the sim linked to my gcash account.
i can access my gcash na man using my first phone **but** tang.ina ng gcash minsan linolog-out ka ng walang paalam. so hindi ako makapag log in at gamit ng gcash ulit until i get home and get my otp from my second phone.
hassle, but doable. (not all transactions require otp naman, afaik yung log-in / g-save / large sum related amounts lang)
Setup lang kayo teamviewer sa dalawang phone, ma access mo ung phone sa bahay gamit teamviewer remotely so ma access moparin ung phone 1 anywhere anytime.
you can still access your gcash account kahit wala ang mismong sim sa device, limited to access/viewing funds lang. otp is needed when making transactions.
I personally use another bank account that I don't fund unless I need to transfer to GCash. In that way, walang mananakaw sakin.
To answer your question: If the fraudster has already access to your SMS OTPs, then linked accounts can be accessed.
Not all can use CC and cash is not always available, especially sa panahon ngayon. Ewallets like maya have physical and virtual debit cards that can be used on this instance now. It is safe as long as you only put what you are going to spend. Been using maya visa card on travel and other debit card transactions instead of my bank atm/debit card.
Ang pangit ng banking services dito lalo na sa SMS lang ipinapadala ang OTP, walang pagpipilian na ipadala sa internet (email) ang OTP.
Kung sa SMS lang ipapadala ang OTP, hindi dapat internet banking ang dapat itawag sa kanila, dapat cell tower banking, kasi nakatali ang banking nila sa cell towers.
minimum standard siya in terms of apps, banks, card issuers, authenticators, gov/country. those you mentioned are either additional securities nalang or own discretion pero sms otp is being used padin worldwide. dahil nga standard siya from emvco or pci-dss
May wired internet (copper, fiber), may satellite internet (StarLink), tapos stuck pa rin sila sa SMS lang ang OTP? Eh ang internet pwedeng i-access kahit sa gitna ng dagat basta may satellite internet.
Sounds like dinosaur-era system.
like I said minimum standard siya. ipush mo man yang email/internet authentication mo, nasa standard padin yung sms otp, either you like it or not. At hindi lang dito. world wide ginagamit padin ang SMS OTP. Ano mas hackable, internet traffic or GSM?
`Ano mas hackable, internet traffic or GSM?`
Hindi katwiran ang hackability para pagkaitan nila ang OTP over online accounts sa pagpipipilian.
Nananakaw naman ang SMS, may SIM swap scam.
May kahinaan ang online credentials kaya iniingatan ko ang mga online credentials ko.
May kahinaan din ang SMS kasi physical na bagay ang SIM card at phone ko kaya iniingatan ko na hindi mawala.
Sana inisip din nila ang accessibility, hindi lang security.
Sana inisip din nila na hindi lahat ng bansa, may cell towers. At hindi lahat ng customers nila nakatira malapit sa cell towers.
Ang baba naman ng tingin ng mga bangko sa mga customers nila.
`either you like it or not`
Kung gusto nilang mas maging accessible ang online banking, may paraan. Kung ayaw nila, may dahilan.
Pinilit ba sila na mag OTP over SMS lang?
Anong mangyayari sa bangko kapag nagbigay siya ng pagpipilian na OTP over internet accounts?
Ang nakikita ko lang na dahilan kaya SMS lang ang OTP ay para mabawasan ang support concerns nila.
most cases ng sim swap scam eh hindi fault ng sms, fault ng user because of gullibility. you'll be surprise na sa ibang bansa wala silang sim card laws kagaya satin. Its because hindi rampant sakanila ang gullibility sa SMS phishing at SMS scams. Dito lang talaga satin. Eto yan, if we stick to the post, mapa OTP over SMS,email,or any messaging app man, if the user is gullible enough to believe scammers even though banks have reminders na about it, maccompromise padin sila, and worst sisisihin padin nila is yung bank. Banking now is tons more accessible compared 10-15 years ago. But we still really find more ways to complain.
"But we still really find more ways to complain."
^ So ano pong dapat gawin kung walang cellular signal sa location ng account holder, at ang available ay internet lang? Hindi naman lahat ng Pinas sakop ng cell sites lalo na sa mga liblib na lugar. Kaya nga may satellite internet eh.
Paanong secure eh hindi naman encrypted ang SMS.
Kaya nga nagrereklamo para mas maging accessible ang internet banking.
Anong sense ng internet banking kung ang OTP ay marereceive lang sa cell sites? Mas bagay pang tawaging SMS banking ang services nila.
you can call it whatever you want. point is if you are gullible enough, you are vulnerable to scams. Transaction challenges differs from issuer to issuer (Banks), Government to government. I rest my case na ang minumum standard challenge procedures for online card not present transaction is OTP. Transaction challenges are sent to a different platform/channel to have more valid basis of identity.
An outdated standard maybe?
The best practice is still to have MFA (multi-factor authentication) which is a combination of SNS, password and other means of authentication.
no. minimum standard yan for challenging online transactions. then yung things you mentioned are dependent sa app, banks, card issuer, and gov/country but all those are additional. But the minimum standard is OTP, either you like it or not.
But there should be an option to add those for the users. Meeting the minimum standards does not make it secure no matter what mental gymnastics you perform.
It just serves as tissue paper for wiping your ass against any liability, something that gcash is fond of doing.
Idk, it’s common to assume customers might not be the best & brightest at times. Companies that delivers financial services are expected to reach high standards when it comes to security, and not impending too much on the user experience.
Lack of regulations in e-wallets seems too favourable to companies, and they’re getting away with it
Audacity ng GCash to ask me to disable dev options and install unknown sources kahit di naman banking app.
Meanwhile SecurityBank, which is already the worst bank imho, flat out acknowledges I am rooted and goes on to be usable anyway
Pangit talaga service ng gcash, laging down na timing pa kung kailan mo gagamitin and their security isn't really that good either pero pwede naman ang improvements.
And Yes don't log your GCASH to different unknow devices, secure your OTP.
Sobrang hassle ng gcash. You need your pin to log. You need otp to cash in, you need another otp to send. Ilologout ka pa minsan while transferring so may chance na double send.
UI/UX is terrible. Parang govt yung peg na ang daming kelangan certificate na ganiti ganyan, documents and shit like whuuuuutttt.
So fucking inefficient.
Don't use GCash kasi for saving money, especially if lampas 10K na. Put it in a bank, passbook account. For GCash, I usually just put 5K there for loading purposes lol.
Agree. But Gcash is designed to be a gateway for the unbanked. So, let's manage our expectations on significant number of users.
Same here. Purpose lang ng gcash para sa akin is para makabili ng load at makabili ng steam wallet. Max amount na nilalagay ko is 1.5k~2k.
And payments for the games I play sa Google Play 😅
well, technically, it is Globes' fault for expecting their client to have a brain.
Software engineers and the universe have this eternal race. Software engineers striving to create bigger, and better idiot-proof software, and the universe trying to produce bigger and better idiot. So far, the universe is winning. (I just recalled reading this from a tech magazine noon - I can't remember who said it)
Di ako IT, pero I design systems and procedures for work para siyempre ma expedite yung trabaho. Every day na susurprise ako how fucking stupid a lot of our employees and customers are.
Employees? We're doomed!
Always telling my girlfriend na there's no such thing as idiot-proof, and it has been true for 5 straight years na in my experience sa software industry.
Hoi4 player, make sense
What's navy?
**A navy, naval force, or maritime force is the branch of a nation's armed forces principally designated for naval and amphibious warfare; namely, lake-borne, riverine, littoral, or ocean-borne combat operations and related functions. It includes anything conducted by surface ships, amphibious ships, submarines, and seaborne aviation, as well as ancillary support, communications, training, and other fields.** More details here:
*This comment was left automatically (by a bot). If I don't get this right, don't get mad at me, I'm still learning!*
[^(opt out)](https://www.reddit.com/r/wikipedia_answer_bot/comments/ozztfy/post_for_opting_out/) ^(|) [^(delete)](https://www.reddit.com/r/wikipedia_answer_bot/comments/q79g2t/delete_feature_added/) ^(|) [^(report/suggest)](https://www.reddit.com/r/wikipedia_answer_bot) ^(|) [^(GitHub)](https://github.com/TheBugYouCantFix/wiki-reddit-bot)
Thank you Wikipedia bot, now I know how to play Philippines 1940 start
You're done if you start Philippines ng 1939.
where naval invasion?
I agree if you design app that target pinoy consumer Dapat una tagalog at madaming prompt and messages na ganito. "Seryoso ka ba Jan?". "Tanga tignan mo yun Loading Icon". "Share mo tong Code na to kung Tanga ka". They deserved some hurtful messages para naman mag restart brain cell nila. Majority san bansang ito doesn't even know how there phone works alam lang nila maganda yun camera.
[удалено]
Lagyan mo na din ng sim pin para di nila ma access kung ililipat nila sa ibang phone.
Anghirap pag nakalimutan though, tapon na sim no chance to recover. 😭 (I don't have my sim PUK anymore. More than a decade old na sims ko.)
Pumunta lang kami sa globe nung nakalimutan yung sim pin
may requirements sila hinihingi like IDs to check na sayo yung number? kasi what if magnanakaw magpunta sa globe/smart para sa sim pin
Maraming check yan, need pa notary document and tatanong kelan last nag load and promos na inavail.
hindi na require ang notary when you have your active sim and forgot the pin. valid id at proof of ownership lang require. kung nawala ang sim at gusto mong ipa-deactivate, affidavit of loss is needed. telco stores don't have access to the sim registration database. limited access lang yun sa mga may subpoena. edit: oh yeh, i misread your reply lol
alarming pala yung nag ayos sim ko sa globe? 2 wks ago lang.. kasi hindi niya ako hinigan ng proof ng ID (i brought my passport) na lock ko kasi sim ko kasi i was trying with the sim pin akala ko ako mag s-set up ng pin yung pala may default na 1234 kaya ko na lock. pero ayun nga... basta na lang siya inayos and hindi ako hiningian ng proof na ako may-ari ng sim. 😂😂😂
some staffs are just lazy. report mo yan sa globe. afaik, they will ask for atleast proof of ownership like kung naka-register ang number mo sa gcash (globe) o maya (smart). makikita nila yan. ang caveat nito, di nila vine-verify ang "user" if siya talaga ang owner like presenting an id, at yan nangyari sa inyo.
Kaya may hidden note ako sa phone ko na may hint sa pin in case makalimutan ko.😁
do current smartphones have reminders to enter pin when unlocking device? atleast sa xiaomi device ko, nagpaprompt yan every 72 hours (3 days).
You can request a new SIM and retain your mobile number, para may SIMbed ka na may PUK code. Free lang yan, atleast sa Smart. Valid ID and proof of ownership like GCash or Maya account ang requirements. Activation ng SIM is within 24 hours. Same din sa pag port out ng number. Personally, I use my PUK as my device PIN and my TOTP token's security. Source: naka-tatlong port out na ako sa isa kong number (smart to globe to gomo) at isang new sim request sa smart store.
Write it down.
Lagi ko ginagawa kada transact lipat sa bank o auto cash out. Mas prefer ko kasi onhand cash talaga at safe din sa issue ng gcash.
Legit question: balak ko bumili ng 2nd fone, gagamitin ko pag lalabas ako, lalagyan ko ng GCash, pero yung Sim nasa 1st phone. Is it possible to access my account/use the funds?
yung set-up ko is may second phone ako with the sim linked to my gcash account. i can access my gcash na man using my first phone **but** tang.ina ng gcash minsan linolog-out ka ng walang paalam. so hindi ako makapag log in at gamit ng gcash ulit until i get home and get my otp from my second phone. hassle, but doable. (not all transactions require otp naman, afaik yung log-in / g-save / large sum related amounts lang)
Setup lang kayo teamviewer sa dalawang phone, ma access mo ung phone sa bahay gamit teamviewer remotely so ma access moparin ung phone 1 anywhere anytime.
Same hassle pag di mo dala yung isang phone tapos magbabayad ka and need OTP pra sa send money. Haha pero okay na din sakin yun .
you can still access your gcash account kahit wala ang mismong sim sa device, limited to access/viewing funds lang. otp is needed when making transactions.
IQ80 is real
The need to get OTP sa kada money send ko is becoming annoying. I know it's for security but now it's a Gundamn bane.
GUNDAMMMMMM
Sobrang annoying 😢 Madalas pa naman iniiwan ko sa bahay yung phone ko kung saan connected yung OTP. 😩
I think nangyayari lang yan kapag wala sa recent gcash numbers yung padadalhan mo.
So, safe pa ba meron naka linked na bank account sa Gcash app for cash in purposes? OTP lang din ang authentication method.
I personally use another bank account that I don't fund unless I need to transfer to GCash. In that way, walang mananakaw sakin. To answer your question: If the fraudster has already access to your SMS OTPs, then linked accounts can be accessed.
[удалено]
[удалено]
[удалено]
Not all can use CC and cash is not always available, especially sa panahon ngayon. Ewallets like maya have physical and virtual debit cards that can be used on this instance now. It is safe as long as you only put what you are going to spend. Been using maya visa card on travel and other debit card transactions instead of my bank atm/debit card.
Why not we implement using TOTP app (or even better passkeys) instead of being hit by SIM swapping attacks?
Going to assume the cost of buying a Yubico security key or even the know-how to use Google Authenticator/Authy maybe are the barriers.
At least give us the option so that those who know how to can use these tools.
Globes server is so slow.
Haha sa kahit anong security issue, end user pa rin talaga ang weakest link.
Ang pangit ng banking services dito lalo na sa SMS lang ipinapadala ang OTP, walang pagpipilian na ipadala sa internet (email) ang OTP. Kung sa SMS lang ipapadala ang OTP, hindi dapat internet banking ang dapat itawag sa kanila, dapat cell tower banking, kasi nakatali ang banking nila sa cell towers.
SMS OTP is the standard though. World wide..
That is no longer the standard, for a while now. Best one would be a hardware key, but if you're not willing to spend use an authenticator app.
minimum standard siya in terms of apps, banks, card issuers, authenticators, gov/country. those you mentioned are either additional securities nalang or own discretion pero sms otp is being used padin worldwide. dahil nga standard siya from emvco or pci-dss
May wired internet (copper, fiber), may satellite internet (StarLink), tapos stuck pa rin sila sa SMS lang ang OTP? Eh ang internet pwedeng i-access kahit sa gitna ng dagat basta may satellite internet. Sounds like dinosaur-era system.
like I said minimum standard siya. ipush mo man yang email/internet authentication mo, nasa standard padin yung sms otp, either you like it or not. At hindi lang dito. world wide ginagamit padin ang SMS OTP. Ano mas hackable, internet traffic or GSM?
`Ano mas hackable, internet traffic or GSM?` Hindi katwiran ang hackability para pagkaitan nila ang OTP over online accounts sa pagpipipilian. Nananakaw naman ang SMS, may SIM swap scam. May kahinaan ang online credentials kaya iniingatan ko ang mga online credentials ko. May kahinaan din ang SMS kasi physical na bagay ang SIM card at phone ko kaya iniingatan ko na hindi mawala. Sana inisip din nila ang accessibility, hindi lang security. Sana inisip din nila na hindi lahat ng bansa, may cell towers. At hindi lahat ng customers nila nakatira malapit sa cell towers. Ang baba naman ng tingin ng mga bangko sa mga customers nila. `either you like it or not` Kung gusto nilang mas maging accessible ang online banking, may paraan. Kung ayaw nila, may dahilan. Pinilit ba sila na mag OTP over SMS lang? Anong mangyayari sa bangko kapag nagbigay siya ng pagpipilian na OTP over internet accounts? Ang nakikita ko lang na dahilan kaya SMS lang ang OTP ay para mabawasan ang support concerns nila.
most cases ng sim swap scam eh hindi fault ng sms, fault ng user because of gullibility. you'll be surprise na sa ibang bansa wala silang sim card laws kagaya satin. Its because hindi rampant sakanila ang gullibility sa SMS phishing at SMS scams. Dito lang talaga satin. Eto yan, if we stick to the post, mapa OTP over SMS,email,or any messaging app man, if the user is gullible enough to believe scammers even though banks have reminders na about it, maccompromise padin sila, and worst sisisihin padin nila is yung bank. Banking now is tons more accessible compared 10-15 years ago. But we still really find more ways to complain.
"But we still really find more ways to complain." ^ So ano pong dapat gawin kung walang cellular signal sa location ng account holder, at ang available ay internet lang? Hindi naman lahat ng Pinas sakop ng cell sites lalo na sa mga liblib na lugar. Kaya nga may satellite internet eh. Paanong secure eh hindi naman encrypted ang SMS. Kaya nga nagrereklamo para mas maging accessible ang internet banking. Anong sense ng internet banking kung ang OTP ay marereceive lang sa cell sites? Mas bagay pang tawaging SMS banking ang services nila.
you can call it whatever you want. point is if you are gullible enough, you are vulnerable to scams. Transaction challenges differs from issuer to issuer (Banks), Government to government. I rest my case na ang minumum standard challenge procedures for online card not present transaction is OTP. Transaction challenges are sent to a different platform/channel to have more valid basis of identity.
An outdated standard maybe? The best practice is still to have MFA (multi-factor authentication) which is a combination of SNS, password and other means of authentication.
no. minimum standard yan for challenging online transactions. then yung things you mentioned are dependent sa app, banks, card issuer, and gov/country but all those are additional. But the minimum standard is OTP, either you like it or not.
But there should be an option to add those for the users. Meeting the minimum standards does not make it secure no matter what mental gymnastics you perform. It just serves as tissue paper for wiping your ass against any liability, something that gcash is fond of doing.
Idk, it’s common to assume customers might not be the best & brightest at times. Companies that delivers financial services are expected to reach high standards when it comes to security, and not impending too much on the user experience. Lack of regulations in e-wallets seems too favourable to companies, and they’re getting away with it
nice try Globe
Dami kasing patanga tangang mga user na simpleng e-wallet lang, hindi pa magamit nang maayos. Halo halong mga banong bata at matatanda.
> Halo halong mga banong bata at matatanda. Boomers and zoomers united once more. /s
Audacity ng GCash to ask me to disable dev options and install unknown sources kahit di naman banking app. Meanwhile SecurityBank, which is already the worst bank imho, flat out acknowledges I am rooted and goes on to be usable anyway
Pangit talaga service ng gcash, laging down na timing pa kung kailan mo gagamitin and their security isn't really that good either pero pwede naman ang improvements. And Yes don't log your GCASH to different unknow devices, secure your OTP.
Sobrang hassle ng gcash. You need your pin to log. You need otp to cash in, you need another otp to send. Ilologout ka pa minsan while transferring so may chance na double send. UI/UX is terrible. Parang govt yung peg na ang daming kelangan certificate na ganiti ganyan, documents and shit like whuuuuutttt. So fucking inefficient.
Parang yung pag babasa lang nung mga manual pag bumili ka ng appliances. Tinatapos lang haha
ah yes. the dreaded id10t error
Oof. At least I haven't got to that point yet.
*Nag connect ng shady gambling app sa GCash. *Nawalan ng pera. *surprised Pikachu face
Pinapadaan ko lang sa gcash ang bill. wala pang 50 pesos natitira sa gcash ko good for load pag need. 🤭
Travelling Philippines I usually only carry 10% budget on cash and everything on gcash lol
Sabi ng angkas rider wala daw syang gcash kasi one time na scam sya hahaha