Customers of HSBC are being sent phony emails “warning” them their account is locked, according to a blog post from Malwarebytes.
Likely a new phishing campaign, the email urges customers of HSBC, a global banking and financial services institution, to complete an online security form and provides a link that leads them to hsbc-message(dot)com, which then requests the client’s personal information, namely card numbers, expiration date, card verification code and ATM PIN.
This scare tactic is a common method for scammers and this is not the first time HSBC clients were targeted. Experts continually warn the public conducting financial transactions online to delete emails claiming to be from financial institutions that provide click-through links. Banks never contact customers requesting information in this manner.