HKMA Warns of HSBC Phishing Scam Targeting Hong Kong Customers
Summary
The Hong Kong Monetary Authority issued a scam alert warning the public about phishing instant messages impersonating The Hongkong and Shanghai Banking Corporation Limited. The alert clarifies that banks will not send SMS or emails with embedded hyperlinks directing customers to conduct transactions or request sensitive information such as login passwords or one-time passwords. Individuals who may have disclosed personal information should contact the relevant bank and report the matter to the Hong Kong Police Force Crime Wing Information Centre.
What changed
The HKMA published a scam alert notifying the public that phishing instant messages are targeting HSBC customers in Hong Kong. The alert reiterates that legitimate banks will not send SMS or emails containing embedded hyperlinks to conduct transactions or request sensitive personal information such as login credentials or one-time passwords.
Banks and financial institutions should note this advisory for customer communication purposes. Consumers who believe they may have provided personal information in response to such scams should contact the relevant bank and report the matter to the Hong Kong Police Force Crime Wing Information Centre at 2860 5012.
Archived snapshot
Apr 18, 2026GovPing captured this document from the original source. If the source has since changed or been removed, this is the text as it existed at that time.
Scam alert related to banks
Press Releases
17 Apr 2026
Scam alert related to banks
The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to the press release issued by the bank listed below relating to fraudulent websites, internet banking login screens, phishing emails or other scams, which has been reported to the HKMA. Hyperlink to the press release is available on the HKMA website.
| Bank | Type of Scam |
|---|---|
| The Hongkong and Shanghai Banking Corporation Limited | Phishing instant messages |
The HKMA wishes to remind the public that banks will not send SMS or emails with embedded hyperlinks which direct them to the banks’ websites to carry out transactions. They will not ask customers for sensitive information, such as login passwords or One-Time Password, by phone, email or SMS (including via embedded hyperlinks).
Anyone who has provided his or her personal information, or who has conducted any financial transactions, through or in response to the scams concerned, should contact the relevant bank with the information provided in the corresponding press release, and report the matter to the Crime Wing Information Centre of the Hong Kong Police Force at 2860 5012.
Hong Kong Monetary Authority
17 April 2026
Latest Press Releases
- 17 Apr 2026 Scam alert related to banks
- 17 Apr 2026 Report on “Navigating the Green Shift: Opportunities and the Evolving Landscape of Transition Finance”
- 16 Apr 2026 Scam alert related to banks
- 16 Apr 2026 Ministry of Finance issues Renminbi Sovereign Bonds through Central Moneymarkets Unit of Hong Kong Monetary Authority
- 15 Apr 2026 Scam alert related to banks
View All View All Last revision date : 17 April 2026 Share
Related changes
Get daily alerts for HKMA Press Releases
Daily digest delivered to your inbox.
Free. Unsubscribe anytime.
About this page
Every important government, regulator, and court update from around the world. One place. Real-time. Free. Our mission
Source document text, dates, docket IDs, and authority are extracted directly from HKMA.
The summary, classification, recommended actions, deadlines, and penalty information are AI-generated from the original text and may contain errors. Always verify against the source document.
Classification
Who this affects
Taxonomy
Browse Categories
Get alerts for this source
We'll email you when HKMA Press Releases publishes new changes.
Subscribed!
Optional. Filters your digest to exactly the updates that matter to you.