The Hong Kong Monetary Authority (HKMA) wishes to alert members of the public to a press release issued by Citibank (Hong Kong) Limited relating to an unauthorised website and phishing instant message, which has been reported to the HKMA. A hyperlink to the press release is available on the HKMA website.
The HKMA wishes to remind the public that banks will not send SMS or e-mails with embedded hyperlinks which direct them to the banks’ websites to carry out transactions. They will not ask customers for sensitive personal information, such as login passwords or One-Time Password, by phone, email or SMS (including via embedded hyperlinks).
Anyone who has provided his or her personal information, or who has conducted any financial transactions, through or in response to the website or instant message concerned, should contact the bank using the contact information provided in the press release, and report the matter to the Police by contacting the Cyber Security and Technology Crime Bureau of the Hong Kong Police Force at 2860 5012.
Hong Kong Monetary Authority
26 August 2021