Beyond OTPs: Your Salmon app’s industry-leading security features are designed to stop fraud before it happens

As fraud attacks become increasingly sophisticated in the Philippines, Salmon, one of the country’s leading fintech apps, continues to strengthen customer protection through powerful security features. Designed to proactively detect threats and prevent unauthorized access, Salmon’s advanced security systems help keep customer accounts and transactions safe before fraud can even happen.

“Most financial platforms still treat fraud as something you respond to after the damage is done,” said Raffy Montemayor, Co-founder of Salmon. “At Salmon, we designed our security systems to work in the background and proactively stop fraud before it succeeds.”

With this, Salmon customers can transact with greater confidence knowing their accounts are protected by multiple layers of intelligent security:

Real-time visibility on where your account is used

Unlike many financial apps, Salmon allows customers to view every device currently logged into their account, including the phone model, approximate location, and last active time.

If a device appears unfamiliar or suspicious, customers can instantly terminate that session with a single tap directly inside the app. Their active device remains clearly labeled as “This device” to avoid accidental lockouts.

Customers will also be able to see the apps, online stores, and other services, where their Salmon card is enrolled, and can easily restrict charges, if needed. This way, they have full visibility and control of where their Salmon account is being used.

Instant card controls and one-time virtual cards

Customers can instantly freeze or permanently block their Salmon card directly in the app if it is misplaced or suspected to be compromised, helping prevent unauthorized transactions in real time.

For safer online purchases, customers can also generate a one-time virtual card that expires after a single transaction, keeping their primary card details protected and reducing the risk of card fraud.

Detecting malicious apps 

One of the fastest-growing fraud threats in the Philippines involves malicious apps that silently read screen contents, intercept OTPs, and potentially execute unauthorized actions without the user’s knowledge.

Salmon actively detects when a suspicious app on a customer’s device has gained a dangerous level of control. Depending on the risk-level, Salmon will either notify the customer about the detection in-app or via direct calls, or temporarily restrict sensitive account activity to help protect the customer. They will then be guided on removing malicious apps and protecting potentially exposed credentials.

Security beyond the OTP

Many account takeover scams in the Philippines rely on intercepting OTPs through phishing links, fake calls, or malware. Salmon’s security model is designed so that an OTP alone cannot authorize sensitive actions.

To access critical account functions such as money transfers, customers must complete live facial verification. Unlike standard phone face unlock systems, Salmon’s facial recognition technology is designed to verify real, live users before sensitive actions can proceed.

This means that even if attackers successfully intercept OTPs, they still cannot move funds or fully take over an account which reduces the risk of account takeover fraud.

In-app fraud confirmation in under a minute

When Salmon detects a potentially high-risk transaction, it is flagged for confirmation before money leaves the customer’s account.

Customers immediately receive an in-app notification containing key transaction details, allowing them to quickly review the activity and either confirm the transaction and retry it instantly, or report it as fraudulent.

The entire process happens digitally within the app itself, without requiring hotline calls, lengthy wait times, or branch visits, unlike other banks or fintechs. 

24/7 human anti-fraud support

Salmon’s anti-fraud team operates around the clock, providing customers with access to real human support whenever suspicious activity arises.

For more complex fraud-related cases, Salmon also assigns investigators to assist customers in documenting incidents, preparing complaints, and coordinating regulatory or legal filings when necessary.

As digital scams continue to evolve, Salmon believes fintech security must move beyond reactive alerts and focus instead on proactive, customer-centered protection.