Malaysia’s digital payments ecosystem is expanding at an unprecedented pace, but scale alone does not define strength. In 2025, the country recorded 18.4 billion e-payment transactions, reflecting a 25 per cent year-on-year increase, with each Malaysian conducting an average of 538 digital transactions. DuitNow QR volumes have also doubled to three billion, supported by close to three million merchant touchpoints nationwide.
While these figures demonstrate strong adoption, they also raise a more pressing question for the industry: whether trust is keeping pace as digital transactions become increasingly embedded in everyday life. Reported fraud losses reached RM2.8 billion in 2025, highlighting the growing risks within a rapidly digitalising ecosystem. In the first quarter of the year alone, online fraud cases had already risen to 12,110, with total losses amounting to RM573 million. Although digital payments continue to scale, these figures reflect a parallel reality in which confidence in the system is being tested in real time. This marks a clear inflection point, where the focus must now shift from driving adoption at scale to strengthening assurance and trust at every level of the transaction journey.
Trust in payments is often discussed in broad terms, but for businesses on the ground it is built on three fundamental elements: visibility, control, and protection. Visibility ensures merchants can track the status of every transaction in real time, while control provides certainty over when funds are received, enabling more effective cash flow management. Protection offers reassurance that businesses are safeguarded when unexpected issues arise. When any of these elements is weakened, trust can quickly erode, particularly for smaller businesses operating on tight margins.
In practice, most payment failures do not occur at scale but at the edges of the system, where processes are fragmented, systems are disconnected, and the margin for error is smallest. For micro, small and medium enterprises (MSMEs), a delayed settlement or disputed transaction is not a minor inconvenience but a disruption to daily operations.
Bank Negara Malaysia has already recognised this shift in focus. The priority is no longer solely on expanding digital payments, but also on safeguarding trust within the ecosystem. Frameworks such as the Shared Electronic Fraud and Theft policy establish shared accountability between financial institutions and users, while infrastructure enhancements such as RENTAS+ and the adoption of ISO 20022 standards strengthen transparency and resilience across transactions. These are essential foundations, but regulation alone is not sufficient to build trust. Trust is ultimately shaped through consistent, day-to-day experiences at the merchant level.
Malaysia’s 1.2 million MSMEs sit at the centre of this transition. Unlike large enterprises, they typically operate without extensive financial control systems or dedicated risk teams. Their exposure is immediate, and their tolerance for disruption is low. For these businesses, trust is not defined by policy frameworks or technical standards, but by whether payments arrive as expected, whether transactions are transparent, and whether digitalisation reduces complexity rather than adding to it. This is where the industry must move beyond enabling access and focus on delivering assurance.
From an operator’s perspective, addressing this gap requires rethinking the purpose of payment infrastructure. Direct connectivity to national payment rails, for instance, is not merely a technical enhancement. It removes intermediary layers, enabling faster access to funds and greater visibility over cash flow. This is not only about speed, but about certainty, which is what businesses ultimately depend on.
Similarly, consolidating multiple payment methods into a single platform or device is not just about convenience. It reduces fragmentation, lowers operational risk, and ensures that businesses are not forced to manage multiple systems with inconsistent outcomes. Unified terminals that support QR, card, and alternative payment methods within a single controlled environment reflect this approach. These are deliberate design choices shaped by how merchants operate, rather than how payment systems have traditionally been structured.
Trust must also extend beyond transactions to address broader business risks. Many MSMEs remain underinsured, often due to the complexity or perceived disconnect between traditional insurance products and their day-to-day operations. Embedding protection directly into payment infrastructure offers a more practical approach, where coverage such as business interruption, liability, and asset protection becomes part of the tools merchants already use. By integrating these safeguards into the payment experience, barriers to adoption can be reduced while businesses are better protected against unforeseen disruptions. This reflects a broader shift in fintech, where value is created not only through functionality, but through relevance and integration into real business needs.
Paydibs, for example, has partnered with Great Eastern General Insurance to embed business protection directly into its payment terminals. Coverage for fire and flood damage, cash-in-transit loss, employer liability, and business disruption is bundled with the terminal that merchants already use to accept digital payments. The principle is straightforward: businesses should not have to choose between growing digitally and protecting their operations; both should be built in by design.
Eighteen billion transactions in a single year is a significant milestone, and Malaysia has clearly demonstrated its capacity to achieve digital payment scale. Bank Negara Malaysia’s priorities for 2026, which emphasise stronger fraud prevention, enhanced cross-sector collaboration, and inclusive adoption, further reinforce the importance of trust as a foundational pillar for sustained progress.
In this environment, differentiation will no longer be defined by transaction volume or processing speed alone. It will be shaped by the ability to deliver systems that are resilient, transparent, and purpose-built to support businesses through both growth and uncertainty. Digitalisation accelerates when businesses have confidence in the systems they rely on, and that confidence is earned through consistent performance, clear visibility, and meaningful protection.
