14 November 2024

HSBC warns against phishing websites

The Hongkong and Shanghai Banking Corporation Limited would like to alert its customers to phishing websites purported to be from HSBC. The websites offer several types of investments including gold investments that aim at capturing customers’ banking credentials ultimately. Below are the screen captures and URLs of the phshing websites:

Phishing URLs

shk.hkhfad.com
shk.hkhfah.com
sdg.hkhfb.com

Screen captures

HSBC reminds customers that it has no connection to the phishing websites. Customers should not enter sensitive personal infomation, chat with anyone, or open any links on the webpages. Similar phishing attempts may recur. HSBC reiterates that it will not send SMS or email messages with embedded links which direct customers to HSBC's websites or mobile apps for account login, banking transactions, or submitting sensitive personal information and credit card details.

Customers are reminded to ensure they are connected to a valid HSBC site. The Bank’s Hong Kong domain is http://www.hsbc.com.hk. Customers should access banking services by typing this address into the browser search bar.

If customers are concerned, they should call the HSBC Personal Customer service hotline at 2233 3000 and report to the Police. “Scameter”, the government’s scam and pitfall search engine, is also available to help identify potential frauds.

Note to editors:

The Hongkong and Shanghai Banking Corporation Limited

The Hongkong and Shanghai Banking Corporation Limited is the founding member of the HSBC Group. HSBC serves customers worldwide from offices in 60 countries and territories. With assets of US$3,099bn at 30 September 2024, HSBC is one of the world’s largest banking and financial services organisations.


HSBC warns against phishing websites (2-page PDF, 81KB)