Common Scams You Should Be Aware Of

Example of a phishing scam. Fraudster
lures the target into providing personal
and financial information by offering a
free flight ticket.

What is Phishing?
Phishing email and SMS usually entice the recipients to click on an embedded link oropen an attachment that will direct them to some fraudulent websites toenter their personal or financial information or install a malware on their devices. The fraudsters can then gain access to the recipients’ bank accounts and steal their money.  

Dos and Don’ts when you find the communications suspicious…

Dos
Ask yourself if you have an account with the sender’s company
Check if the sender’s email address is abnormal
Hover over the embedded link in the email to see if it will redirect you to a suspicious website
Look for “https://” and the lock icon in web browser before entering personal information into a website
Contact the sender via its official website or hotline for confirmation
Don’ts
Click on the embedded link and input personal or financial information (such as your DBS Card+ login ID and password, and card number, PIN and CVV of your credit card)
Click or install any link or attachment in the email. DBS will never ask for your personal or financial information via email or e-Form
Contact the sender via its official website or hotline for confirmation

Example of a bogus call. Fraudster calls
and asks the target to provide his credit
card information and the one time
password received.

Fraudsters may impersonate staff of government departments (such as Hongkong Post or Department of Health) or payment platforms (such as Paypal), saying that irregularities are found in your account. They will ask you to provide your personal or financial information (such as credit card number, its expiry date and CVV) to fix the problem, and then entice you into providing your One Time Password (OTP) to make unauthorised transactions!

Three tips to help you identify bogus calls:
1. Incoming calls from overseas use a “+852” prefix to pretend to be a local phone number.
2. Asks you to provide personal and financial information or password for different reasons.
3. Urges you to act now.

Dos and Don’ts when you receive a suspicious call…

Dos
Hang up immediately
Never share your passwords (including OTP) with anyone under any circumstances
Verify via an official channel or hotline
Don’ts
Share your personal or financial information (such as DBS Card+ login ID and password, and credit card number, its PIN and CVV) through phone call, email, SMS or instant messaging app 

DBS will never ask for your personal or financial information via phone call, email or SMS.


Image of a fraudster running away with
the money cheated.

Fraudsters use social media to promote their fake websites or set up fake online stores that look like a genuine one. They offer luxury or popular items at very low prices to attract customers. However, nothing will be delivered once the payment is made.

Smart tips to avoid online shopping scams
  • Purchase from reputable online platforms
  • Compare similar products to see if the offered price is too good to be true
  • Read reviews about the website or merchant reviews
  • Check the privacy and return policies, contact details and delivery methods of the seller, as fake websites usually have limited information
  • Do not provide your personal information (such as HKID number, mobile number, email address, etc.) or financial information (such as credit card number, its CVV and PIN, etc.) to a seller you are not sure you can trust

Image of a fraudster making a lot of
money.

Fraudsters approach their targets via social media platforms (such as Facebook, Instagram) or instant messaging apps (such as Whatsapp, WeChat) to promote investment opportunities that offer promising returns in a short period of time. The targets will be lured into investing by credit card payment or otherwise. In fact, the lucrative returns will never come true after the fraudster gets the money or financial information of the victims.

Smart tips to avoid investment scams
  • Do research on the investment plan to understand better
  • Be skeptical of any investment plan with guaranteed high returns as all investments carry risk
  • Trade with licensed and regulated financial institutions only
  • Never make an investment decision solely based on the limited information provided
  • Do not provide your personal and financial information to anyone you don’t know well
 

Mini Game

Image of a mini game. You are encouraged to read the security tips below to stay fraud-free.
 

Security Tips

  • Never disclose your DBS login ID, password, One Time Password (OTP), and credit card number, its personal identification number (PIN) and CVV or other sensitive information to anyone
  • Create strong and unique passwords for DBS iBanking/ DBS digibank/ DBS Card+ account and never share them with anyone. Do not use the same passwords for other platforms
    • How to create a strong password? 
      • A strong password should contain upper and lowercase letters, numbers and symbols
      • The password should not contain information easy to guess (such as your date of birth, HKID number and mobile number)
  • Do not save or keep your personal or financial information and password in web browser
  • Be alert of anyone watching you before entering your sensitive information to avoid data leakage

  • Review your transaction details and statements regularly to ensure there is no unauthorised transaction
  • Pay attention to our notifications to spot suspicious credit card activities
  • Check your credit card regularly to make sure it is not lost
  • Verify the online transaction details (including the merchant name and transaction amount) in our SMS (including OTP SMS) or email notifications
  • Keep us updated of your latest contact details. This enables us to reach out to you for clarification as soon as we notice any suspicious activity in your account
  • Please call our 24-hour Customer Service Hotline at 2290 8888 immediately if you notice any suspicious or authorised transaction

  • Check the website link carefully before logging in to any account or sending any information
  • Do not enter your personal and financial information when using a public computer or a non-personal device
  • Do not save or keep any sensitive information and password in a web browser
  • Never connect to an unsecure or unencrypted network

  • Sign on the back of your DBS credit card once received
  • Keep your credit cards safe and do not leave them unattended
  • Check your credit card regularly to make sure it is not lost
  • Check your credit card expiry date. If a replacement credit card has not arrived 7 days prior to its expiry date, please call our 24-hour Customer Service Hotline at 2290 8888 immediately
  • If your credit card is lost, stolen or used by someone without your authorisation, please call our 24-hour Customer Service Hotline at 2290 8888 immediately
  • Third parties are permitted to report lost or trapped credit cards on behalf of persons with hearing impairment
  • Be alert of anyone watching you before entering your password at ATM
  • Do not leave your credit card behind after completing a transaction at ATM
  • Keep your ATM receipts to check your monthly statements regularly
  • If your credit card becomes stuck inside an ATM machine, inform bank staff for assistance. Never accept any help from a stranger

If your credit card is lost, stolen or used by someone without your authorisation, you may report it immediately via these channels:

  • Call our 24-hour Customer Service Hotline at 2290 8888
  • Log in to DBS Card+
    1. Choose “More” > “App & Security Settings” > “My Card is Lost”
    2. Follow instructions to report lost card
  • Complete the authentication process via DBS digibot for credit card blocking and replacement


Please update your contact details via these channels:

  • DBS iBanking
    1. Log in to DBS iBanking
    2. Select “Preferences”
    3. Select “Update Personal Details”
  • Update your correspondence address through DBS Card+
    1. Log in to DBS Card+
    2. Select “Change Correspondence Address” under “More” page
    3. Update your correspondence address and set the effective date
    4. Complete the authentication process
 

Quiz

Which of the following email is NOT sent by DBS?


 

Email A

Image of a “Card Not Present” Transaction Email Notification sent by DBS.

Email B 

Example of a phishing email. It purports to be sent from DBS and asks the recipient to log in to DBS iBanking to activate the frozen credit card account via the embedded hyperlink.

Image showing the key indicators that
this is a phishing message.

The answer is B. Phishing communication includes below characteristics:

  1. The name and email address of sender look genuine but are slightly different from the real ones.
  2. Appears as an important message and requires the recipients to confirm or update their personal or financial information.
  3. Urges recipients to act now.
  4. Contains a suspicious link, document or an e-Form.
  5. Grammatical errors or typos.

Thank you. Your feedback will help us serve you better.

Was this information useful ?

Thank you for your feedback
Let us know how this article helped:
We're sorry to hear that.
How can we do better?
Please enter only letters, numbers, @!$&-()',./