GCash Fully Rolls Out In-App OTPs to Replace SMS-Based Authentication

GCash has announced the full rollout of its new In-App One-Time Passwords (OTPs) feature, replacing traditional SMS-based OTP authentication by June 22, 2026, as reported by TechPinas. The transition aims to strengthen security for the country's leading finance super app and largest cashless ecosystem.

The in-app OTP system delivers authentication requests through secure push notifications directly within the GCash app, eliminating the need for SMS codes. This upgrade helps protect users from phishing scams, SIM swap fraud, and SMS interception. The move aligns with the Bangko Sentral ng Pilipinas directive under the Anti-Financial Account Scamming Act, which mandates the phaseout of SMS-based OTPs by June 2026.

Cybercriminals have increasingly exploited SMS OTPs through social engineering and digital deception. By keeping the authentication process within the app, GCash ensures that only the legitimate account holder can access verification codes, significantly reducing the risk of account takeovers and financial fraud.

Related stories

Banks, e-wallets face new BSP rules on digital payment fees

Meta strengthens teen protections across Facebook, Instagram, and Messenger

Nexal Watch Series Launches in Philippines with Two Models for Active Lifestyles