Hong Kong – EMSD alerts public to fraudulent email

Sep 2, 2021 | International

EMSD alerts public to fraudulent email

**************************************


     The Electrical and Mechanical Services Department (EMSD) today (September 2) reminded members of the public to be alert to fraudulent email purporting to be sent by the EMSD. The EMSD has recently received a number of enquiries from vendors about receiving email from procurement@emsd-govhk.com, an email address with a domain similar to that of the EMSD (@emsd.gov.hk).
      
     The sender claimed to be an EMSD staff member and instructed the vendors to provide quotations and supply electronic accessories and personal protective equipment.
      
     A spokesman for the EMSD clarified, “We have not sent the emails in question. The EMSD purchases stores through the procurement procedures stipulated in the Stores and Procurement Regulations, and we confirm procurement with suppliers by purchase orders or letters of acceptance. Members of the public and vendors are advised not to click on the links of any suspicious email, provide any of their personal and bank information through such links, nor make any payment. The EMSD has reported the incident to the Police for further investigation.”
      
     The EMSD urged members of the public to stay alert. For enquiries, call 1823 or email info@emsd.gov.hk.

Hong Kong – HKMA alerts public to phishing scams via hyperlinks embedded in SMS or emails

Mar 5, 2021 | International

 

The Hong Kong Monetary Authority (HKMA) has recently received reports from banks about their customers having received phishing SMS or emails with embedded hyperlinks purportedly sent by the banks. After clicking the embedded hyperlinks, the customers were lured into entering their internet banking login IDs, passwords and SMS One-Time Password (OTP) provided by the banks.  Unauthorised transactions were subsequently conducted over the accounts of the customers and they suffered financial losses.
      
     The HKMA wishes to remind the public that banks will not send SMS or e-mails with embedded hyperlinks which direct them to the banks’ websites to carry out transactions. They will not ask customers for sensitive personal information, such as login passwords or OTP, by phone, email or SMS (including via embedded hyperlinks).
      
     Members of the public should stay alert to any SMS or emails purported to be sent by banks. They are advised not to click on the hyperlinks embedded in these SMS or emails. Under no circumstances should they disclose their internet banking login information to websites of unknown sources.
      
     If members of the public have disclosed their internet banking login details to untrusted websites or have found unauthorised transactions being conducted over their accounts, they should contact their bank as soon as possible and report to the Police or contact the Cyber Security and Technology Crime Bureau of the Police at 2860 5012.
      
     The HKMA wishes to remind the public to carefully protect their sensitive personal information, check their e-banking accounts from time to time and review alert messages and statements issued by banks carefully.