Axis Bank Introduces Mobile OTP – A Game Changer for Secure Banking!

[ajijul_93rahman]

🚀 Axis Bank is rolling out a new security feature – Mobile OTP! 🚀

If you use Axis Internet Banking, you know how important OTPs are for login and transactions. Until now, these OTPs were sent via SMS, but Axis Bank is now introducing Mobile OTP via the Axis Mobile App for a more secure and seamless experience.

What is Axis Mobile OTP?​

Axis Mobile OTP allows users to generate OTPs directly from the Axis Mobile Banking App, eliminating the need to wait for SMS-based OTPs. This is useful when you have network issues or delays in receiving OTP messages.

How to Use Axis Mobile OTP?​

1️⃣ Download the latest version of the Axis Mobile App.
2️⃣ Complete registration within the app to enable Mobile OTP.
3️⃣ When logging in to Internet Banking, select the Mobile OTP option instead of waiting for an SMS.
4️⃣ Generate OTP in the app and enter it for secure authentication.

Benefits of Axis Mobile OTP​

✅ Faster OTP Generation – No waiting for SMS delays.
✅ More Secure – Reduces risk of OTP interception via SIM swap fraud.
✅ Seamless Transactions – Works even when mobile networks are weak.
✅ Robust Authentication – Directly linked to your Axis Bank account.

Coming Soon!​

As per the Axis Bank website, this feature is coming soon, so keep an eye out for updates. You may need to update your Axis Mobile app once the rollout begins.

What do you think?​

🔹 Will this feature improve security and convenience for Axis customers?
🔹 Have you received the update in your Axis Mobile App yet?
🔹 Should more banks implement this feature?

Drop your thoughts below! 👇🔥

View attachment 83025

 

[Aniket]

Apne aap khudse nahi leke aaya hai...🤣

RBI ne bola hai 😊

 

[Tazact]

Its not a game ganger all together.
Sbi already started same feature couple of years ago. Initially i used it but experienced it was a less secure frature. Switched to OTP

 

[prathameshrk]

I think SBI secure OTP app has been there since more than 10 years now... Don't know what's game changing in this axis app

 

[Sinatra]

"Mobile App" and "security" in same sentence .. sahi hai guru. 😆

Indians need to understand what security and privacy actually means.

 

[ajijul_93rahman]

I think SBI secure OTP app has been there since more than 10 years now... Don't know what's game changing in this axis app

True, SBI Secure OTP has been around for a long time. The Axis app might not be game-changing, but it seems like they're trying to push their own ecosystem instead of letting users choose standard authenticator apps.

 

[ravipr]

Laughable title by OP. Sensationalizing something which has been covered by daddy of all Banks aka SBI since years.

 

[wuodland]

hopefully we can use our own TOTP like authy

 

[phoenix1386]

HSBC already does this since long many years. Nothing innovative here by Axis Bank. 🙂

Also, they should allow 2 passkeys per customer ID, and enable the use of TOTPs without any specialised app like Lotak demands users do.


Long version:

Broadly, usernames and passwords are the best security insofar as dissociation is concerned. Linking one damned mobile number to everything has been a poor move by the supreme one, and the banks have simply been supine. They are happy this way because the onus of security now falls on telecom networks and users in large part.

Furthermore, you change your SIM and you are SOL for 24 hours. Sing praises to the supreme one while you can't do crap out of your own account.

A mobile number should be used only for notifications, IF the user requests them. That's it. A mobile number was made the primary key of a user's financial database in a terribly shortsighted manner only to benefit some wannabe tech bros. They are NOT in the interest of the consumer.

Security was much better previously. Different usernames/ passwords for different accounts. Then, separate transaction passwords. Today, it is just ONE OTP. And they assume that the OTP is being delivered to the rightful owner. Why couldn't they assume the username/passwords are being entered by the owner, as they used to before? To help a bro.

Earlier, nobody could get into my account without knowing my username/ password for that bank. Fine, get into one bank. For other, you need another username password. But, under the supreme one's wisdom, anyone having my mobile number can wing it with ANY of my bank accounts because it is financially not feasible to keep one mobile number per account.

I see 4 SBI accounts in a UPI app. 3 are NOT mine. This sort of thing NEVER happened and cannot happen if the mobile number was not made the centerpiece of the financial system. People want to sing paeans of UPI, but UPI is inherently insecure. They have been brainwashed with convenience.. they do not stop to think that these scams that are happening in New India, could never happen so conveniently if the supreme one did not mandate a damned mobile number as the centerpiece. Account number was private enough. Mobile number is not private. Alas..

So... let's just be ostriches .... or, when you have time, let your voice be heard and send feedback to the RBI and to the Banks. They will never act on it, until the government changes, but at least there will be a record that some people were speaking out all along.


- - -
PUBLIC SERVICE
I am attaching a screenshot of last 4 digits of THREE State Bank of India bank accounts. ANYONE who recognizes their account digits here is advised to change their god-damned mobile number at the earliest. I am fed up of seeing your account in my app. Oh, please sing praises to the supreme one if you see your account number here. It did not happen in the previous regime, as we are always reminded.

See if you remember seeing someone else's bank account in your net banking or mobile app, BEFORE the banks started putting mobile number first.

HINT: You cannot see anyone else's accounts if the primary key is your PAN or say your UIDAI number. Because no matter what, those numbers remain same and are yours. Unlike your mobile number which could have belonged to someone else, or could belong to someone else in future. That's how insecure the supreme one has made Indian banking system to be.

 

[ajijul_93rahman]

HSBC already does this since long many years. Nothing innovative here by Axis Bank. 🙂

Also, they should allow 2 passkeys per customer ID, and enable the use of TOTPs without any specialised app like Lotak demands users do.


Long version:

Broadly, usernames and passwords are the best security insofar as dissociation is concerned. Linking one damned mobile number to everything has been a poor move by the supreme one, and the banks have simply been supine. They are happy this way because the onus of security now falls on telecom networks and users in large part.

Furthermore, you change your SIM and you are SOL for 24 hours. Sing praises to the supreme one while you can't do crap out of your own account.

A mobile number should be used only for notifications, IF the user requests them. That's it. A mobile number was made the primary key of a user's financial database in a terribly shortsighted manner only to benefit some wannabe tech bros. They are NOT in the interest of the consumer.

Security was much better previously. Different usernames/ passwords for different accounts. Then, separate transaction passwords. Today, it is just ONE OTP. And they assume that the OTP is being delivered to the rightful owner. Why couldn't they assume the username/passwords are being entered by the owner, as they used to before? To help a bro.

Earlier, nobody could get into my account without knowing my username/ password for that bank. Fine, get into one bank. For other, you need another username password. But, under the supreme one's wisdom, anyone having my mobile number can wing it with ANY of my bank accounts because it is financially not feasible to keep one mobile number per account.

I see 4 SBI accounts in a UPI app. 3 are NOT mine. This sort of thing NEVER happened and cannot happen if the mobile number was not made the centerpiece of the financial system. People want to sing paeans of UPI, but UPI is inherently insecure. They have been brainwashed with convenience.. they do not stop to think that these scams that are happening in New India, could never happen so conveniently if the supreme one did not mandate a damned mobile number as the centerpiece. Account number was private enough. Mobile number is not private. Alas..

So... let's just be ostriches .... or, when you have time, let your voice be heard and send feedback to the RBI and to the Banks. They will never act on it, until the government changes, but at least there will be a record that some people were speaking out all along.

You’ve raised some solid points. Relying too much on a mobile number for authentication does create security risks, especially with SIM swaps and number changes. Having alternative methods like passkeys, TOTPs, or even old-school transaction passwords could improve security.

UPI is great for convenience, but yes, security should always come first. Banks and regulators should offer multiple authentication options instead of forcing everyone into a one-size-fits-all approach. Hopefully, feedback from users like us will push them to rethink their strategies.

 

[phoenix1386]

You’ve raised some solid points. Relying too much on a mobile number for authentication does create security risks, especially with SIM swaps and number changes. Having alternative methods like passkeys, TOTPs, or even old-school transaction passwords could improve security.

UPI is great for convenience, but yes, security should always come first. Banks and regulators should offer multiple authentication options instead of forcing everyone into a one-size-fits-all approach. Hopefully, feedback from users like us will push them to rethink their strategies.

Absolutely. Internet banking has been made more insecure, sadly, than it used to be, instead of adding security features like passkeys and TOTPs, along with the ability to use usernames/passwords ALONE for login and transacting. The way we had when Mastercard and Visa launched their respective security systems that required an additional password for transaction processing. That was far more secure than what we have today. Instead of building on that, we dumbed it down and made it insecure.

I am personally witnessing serious security concerns. Look at my post again, I have edited it. Added 3 bank account numbers that are not mine. Thanks to UPI. The supreme one only knows how many people can see my accounts because I have changed a few numbers over the years. With what right did the government endanger my privacy and that of my fellow citizens?

I think it is okay to give out account numbers here on the public forum, because, clearly, the government itself considers it legal to show me 3 accounts that are not mine.

Oh, did I mention, I also got SMS to download THREE policy documents; a business insurance, a home insurance and one other.. so, without even being the intended customer, the insurance companies have sent private information of THREE entities to me. Why? Because the supreme one mandated that the mobile number will be the primary key.

I have their names, their addresses, their asset values, few other financial information outlined and detailed in the policy documents.


I hope people wake up.

 

[abhiver]

HSBC has this from ages for bank account

 

[phoenix1386]

HSBC has this from ages for bank account

Indeed. It has given me trouble, though. I need to remember to delink my device before reinstalling the OS on my mobile device for developmental purposes. First time it happened, I had to call customer care. Second time again. I have fortunately remembered it so far. Good thing that one can do A LOT with HSBC on call. Unlike the greatest of Indian banks, HSBC actually feels unbelievably smooth in keeping red tape at bay from customers.

(Plug: Standard Chartered, HSBC, Citi, Amex .. they are all very helpful towards customers, on most occasions. We can do a lot with them that the proudly swadeshi banks would make us cry for. Increase credit limit on call? Only Amex does that. So smooth. So seamless. Other banks? Keep trying. Cross your fingers. Want to get cheque book delivered but not at your registered address? Call HSBC/ SC.. ask them to send them to any branch in India. You can go collect. That is treating the customer as the authorized user and owner. Unlike being treated with scepticism and what not, in the name of privacy and security.)

10 years ago, my banking was FAR more seamless even without mobile apps. Funny how things turn out for the worse, depending on our choices.

I go to an SBI ATM, and I need to wait for OTP. I went to a Reliance Store yesterday, and they used to have their Reliance ONE cards before. Now, they rely on mobile numbers. So, to redeem a simple credit note, I and few others in line behind me had to wait 10 minutes. Why? Because an OTP wasn't reaching me. This is NOT development. This is devolvement.

 

[ajijul_93rahman]

Absolutely. Internet banking has been made more insecure, sadly, than it used to be, instead of adding security features like passkeys and TOTPs, along with the ability to use usernames/passwords ALONE for login and transacting. The way we had when Mastercard and Visa launched their respective security systems that required an additional password for transaction processing. That was far more secure than what we have today. Instead of building on that, we dumbed it down and made it insecure.

I am personally witnessing serious security concerns. Look at my post again, I have edited it. Added 3 bank account numbers that are not mine. Thanks to UPI. The supreme one only knows how many people can see my accounts because I have changed a few numbers over the years. With what right did the government endanger my privacy and that of my fellow citizens?

I think it is okay to give out account numbers here on the public forum, because, clearly, the government itself considers it legal to show me 3 accounts that are not mine.

Oh, did I mention, I also got SMS to download THREE policy documents; a business insurance, a home insurance and one other.. so, without even being the intended customer, the insurance companies have sent private information of THREE entities to me. Why? Because the supreme one mandated that the mobile number will be the primary key.

I have their names, their addresses, their asset values, few other financial information outlined and detailed in the policy documents.


I hope people wake up.

I completely agree that linking everything to a mobile number has made banking less secure. Earlier, security relied more on unique usernames, passwords, and transaction passwords. Now, everything depends on just one OTP sent to a mobile number, which is risky. If someone else gets access to your mobile number, they could potentially access multiple accounts.

The fact that you are seeing other people's bank accounts linked to your mobile number is shocking. It shows how unsafe this system has become. Also, receiving insurance documents that are not meant for you is a major privacy issue. This would not have happened if banks had used permanent details like PAN or Aadhaar instead of mobile numbers.

UPI is convenient, but it has also made things more dangerous. Banks should allow other secure login options like passkeys, TOTPs (time-based one-time passwords), or even the old method of usernames and passwords.

While the government played a role in this, banks are also responsible for blindly following this system without giving users better security options. The only way to bring change is for more people to raise their voices and give feedback to banks and the RBI. If enough people complain, they might be forced to fix these security issues.

 

[ajijul_93rahman]

Indeed. It has given me trouble, though. I need to remember to delink my device before reinstalling the OS on my mobile device for developmental purposes. First time it happened, I had to call customer care. Second time again. I have fortunately remembered it so far. Good thing that one can do A LOT with HSBC on call. Unlike the greatest of Indian banks, HSBC actually feels unbelievably smooth in keeping red tape at bay from customers.

(Plug: Standard Chartered, HSBC, Citi, Amex .. they are all very helpful towards customers, on most occasions. We can do a lot with them that the proudly swadeshi banks would make us cry for. Increase credit limit on call? Only Amex does that. So smooth. So seamless. Other banks? Keep trying. Cross your fingers. Want to get cheque book delivered but not at your registered address? Call HSBC/ SC.. ask them to send them to any branch in India. You can go collect. That is treating the customer as the authorized user and owner. Unlike being treated with scepticism and what not, in the name of privacy and security.)

10 years ago, my banking was FAR more seamless even without mobile apps. Funny how things turn out for the worse, depending on our choices.

I go to an SBI ATM, and I need to wait for OTP. I went to a Reliance Store yesterday, and they used to have their Reliance ONE cards before. Now, they rely on mobile numbers. So, to redeem a simple credit note, I and few others in line behind me had to wait 10 minutes. Why? Because an OTP wasn't reaching me. This is NOT development. This is devolvement.

Yes, HSBC does make banking smoother compared to many Indian banks. It's great that they allow so many things over a phone call without unnecessary red tape. But I understand the trouble of having to delink a device before reinstalling the OS. Not everyone remembers to do that, and then they are stuck calling customer care again and again.

Many foreign banks like HSBC, Standard Chartered, Citi, and Amex treat customers like real account owners, making things easier. Meanwhile, some Indian banks make even small requests a headache. Something as simple as increasing a credit limit or getting a cheque book at a different branch is so complicated with them.

Banking was actually easier 10 years ago, even without mobile apps. Now, everything depends on OTPs, which can fail to arrive on time, causing frustration. The Reliance store experience you mentioned is a perfect example—why should a simple redemption take 10 minutes just because an OTP isn’t received? This isn’t progress; it’s a step backward. Banks should focus on better security, like passkeys and TOTPs, instead of just using OTPs and mobile numbers for everything.

 

[abhiver]

I personally feel that asking or taking of mobile number by every unnecessary shops or chains need to be stop. They ask mobile number to sell underwear or even buying chocolate. I understand that mobile number help the delivery agent but there has to be a mechanism to avoid these like agent can call on the app instead. This will reduce the spam calls and scams, I suppose

 

[RajeshV]

😂
You sure throw "game changer" around, huh?

 

[R!TTER]

Because the supreme one mandated that the mobile number will be the primary key.

Who said that?

Oh, did I mention, I also got SMS to download THREE policy documents; a business insurance, a home insurance and one other.. so, without even being the intended customer, the insurance companies have sent private information of THREE entities to me. Why? Because the supreme one mandated that the mobile number will be the primary key.

I've been getting others' bank statements from public and private sector banks for over a decade now, guess who's fault is it 🙄

Having alternative methods like passkeys, TOTPs, or even old-school transaction passwords could improve security.

Passkeys can also be device dependent. So there goes one of your theories.

Like Pluxee app on phone?

Which are almost certainly used on multiple accounts?

It seems like half of you don't even know what you're talking about 😒

The reason to rely on phones and SIM based authentication is also in part to make the account holder responsible for his/her own security. And it's not like many of you have never heard of the term social engineering, right?

 

[ajijul_93rahman]

🚀 Axis Bank is rolling out a new security feature – Mobile OTP! 🚀

If you use Axis Internet Banking, you know how important OTPs are for login and transactions. Until now, these OTPs were sent via SMS, but Axis Bank is now introducing Mobile OTP via the Axis Mobile App for a more secure and seamless experience.

What is Axis Mobile OTP?​

Axis Mobile OTP allows users to generate OTPs directly from the Axis Mobile Banking App, eliminating the need to wait for SMS-based OTPs. This is useful when you have network issues or delays in receiving OTP messages.

View attachment 83028

How to Use Axis Mobile OTP?​

1️⃣ Download the latest version of the Axis Mobile App.
2️⃣ Complete registration within the app to enable Mobile OTP.
3️⃣ When logging in to Internet Banking, select the Mobile OTP option instead of waiting for an SMS.
4️⃣ Generate OTP in the app and enter it for secure authentication.

View attachment 83027

Benefits of Axis Mobile OTP​

✅ Faster OTP Generation – No waiting for SMS delays.
✅ More Secure – Reduces risk of OTP interception via SIM swap fraud.
✅ Seamless Transactions – Works even when mobile networks are weak.
✅ Robust Authentication – Directly linked to your Axis Bank account.

Coming Soon!​

As per the Axis Bank website, this feature is coming soon, so keep an eye out for updates. You may need to update your Axis Mobile app once the rollout begins.

What do you think?​

🔹 Will this feature improve security and convenience for Axis customers?
🔹 Have you received the update in your Axis Mobile App yet?
🔹 Should more banks implement this feature?

Drop your thoughts below! 👇🔥

View attachment 83025

@msankadi
@Kiranonlinee
@BiggBoss
@amit533
@sicko101
@GTSaketh
@ashwink
@vaibhav111

Looks like Axis Bank has officially rolled out Mobile OTP for Net Banking login and transactions! Now, instead of receiving OTPs via SMS, users have to generate them from the Axis Mobile App (screenshot attached). This seems to have started today. A step towards better security? Or just another hassle for those who don’t use the app often? Let’s see how this plays out!