Threat Management, Incident Response, TDR, Vulnerability Management

Phishing campaign targets HSBC customers

Customers of HSBC are being sent phony emails "warning" them their account is locked, according to a blog post from Malwarebytes.

Likely a new phishing campaign, the email urges customers of HSBC, a global banking and financial services institution, to complete an online security form and provides a link that leads them to hsbc-message(dot)com, which then requests the client's personal information, namely card numbers, expiration date, card verification code and ATM PIN.

This scare tactic is a common method for scammers and this is not the first time HSBC clients were targeted. Experts continually warn the public conducting financial transactions online to delete emails claiming to be from financial institutions that provide click-through links. Banks never contact customers requesting information in this manner.

A HSBS help page offers tips to prevent falling for the scam.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.