Beware of phishing emails claiming to be sent by DBS and SIA

Several victims were cheated into providing their personal information and credit card details on phishing websites after responding to emails that were purportedly sent by DBS Bank or Singapore Airlines.

They later realised that unauthorised transactions in foreign currencies were made to their credit cards.

In these cases, the victims would receive an email from “DBS Bank” informing them that their iBanking accounts have been locked due to multiple failed login attempts, or from “Singapore Airlines” requesting them to take part in a customer satisfaction survey, with the promise of a “reward”.

The victims were asked to click on the link provided in the email and to follow the instructions to unlock their accounts or complete the survey.

They were then directed to a website resembling a genuine website of the company where they were asked to enter their personal information and bank account details, such as their credit card number and Card Verification Value for verification purposes.

The victims then received a One-Time Password (OTP) on their mobile phones which they were prompted to key into the website.

The police advise members of the public to adopt the following preventive measures:

1. Be wary when you are asked to disclose your personal information and bank account details over the Internet;

2. Beware of phishing websites that may look genuine. Look for signs that you are using a legitimate or secure website. These websites are generally encrypted to protect your details. Secure websites use 'https:' instead of 'http:' at the start of the Internet address, or display a closed padlock or unbroken key icon at the bottom right corner of your browser window; and

3. Report any fraudulent charges detected in your credit card bills to your bank immediately.