Hang Seng Bank Limited
Business Fraud Prevention
More forms

Commercial Banking

Fraud Prevention

Help protect your business against fraud & cybercrim

HANG SENG will never ask you to hand over confidential information like passwords or one-time passcodes (OTPs)

Fraudsters exploit one-time passcodes (OTPs) through sophisticated social engineering scams, bypassing multi-factor authentication (MFA) to gain unauthorized access to accounts. In these attacks, criminals manipulate victims into revealing their codes, effectively neutralizing the security benefit of the OTP.

Security Tips

Remote access takeover attacks are on the rise

Remote access fraud is typically initiated when a fraudster makes an unsolicited phone call to the victim,  claiming to be from Hang Seng Bank. The fraudster will often say that there is an issue with the user’s Hang Seng Business e-Banking access, there’s a problem with payments, or that they’ve discovered fraudulent payments from the profile.                                           

Remote Access

Welcome to HASE’s Fraud DigiGuide

Our Fraud DigiGuide is your one-stop hub for learning how to detect, prevent, and respond to fraud

 

Payment fraud can result in significant financial losses. Businesses of every size are at risk. This DigiGuide is designed to equip you and your staff to spot and prevent payment fraud and scams, and to take the right steps if you fall victim.

This information will help you learn about common fraud and scams that could impact your business and outlines some practical steps you can take to prevent your business from falling victim to fraudsters.

Education on this topic across an organisation makes for a better protected business, and this DigiGuide provides a number of tips and checklists which can be shared across management and payment teams.

What you can find in this page

 

  1. How a fraudster might contact you
  2. Common types of fraud
  3. How to prevent fraud
  4. What to do if you fall victim
 

Key Statistics & Insights

In 2025, the number of deception cases in Hong Kong is 43,212, representing a slight decrease of 2.9% compared with 2024. 

Total pecuniary loss amount was HKD8.1B in 2025.

 

Source: Hong Kong Police Force

fraud 

How a Fraudster Might Contact You

Phishing

A common theme in many APP scams. This describes attackers’ attempts to trick users into clicking on a link that will download malware for example, or direct them to a fake website.

Vishing

If you receive an unexpected phone call about money, there’s a good chance it’s a scam. Scammers may claim to be a business or authority you know and trust, like your bank or the police. They may know personal details about you and can even make their phone number look authentic using ‘number spoofing’.

Smishing

This is where scammers send fake text messages, pretending to be your bank or another legitimate organisation. Their goal is to make you reply with your personal or financial details so they can steal money from your account. Fraudsters may also utilise common messaging platforms.

Common Types of Fraud

Email

Business Email Compromise and CEO Fraud

This is an authorised push payment scam where a person or business is tricked into sending money to a fraudster posing as a genuine person or organisation, such as a supplier or CEO.

Learn More

Account

Account Takeover

This type of fraud happens when a fraudster gains access to your bank account, typically by tricking you into divulging information, and resets your passwords and any security numbers so you cannot access your account. They may change the phone number, address and email address connected to the account; this enables them to use the account as if they were a legitimate customer.

Learn More

Gen AI

Gen AI and Fraud

Fraudsters may use generative AI to scam people and businesses. To help protect yourself, it's important that you understand the different types of scams and what to look out for.

Learn More

Vishing

Vishing and Telephone Scams

A phone scam, or vishing, is when a fraudster calls pretending to be your bank or another trusted organisation. They can even make their call appear to come from a number you know and trust. This is known as ‘Phone Number Spoofing’.                                                                                                                                                                                               

Learn More

Fraud Prevention

How to Prevent Fraud

How to minimize payment fraud

How senior management can prevent fraud

How to use emails safely

How to make payments securely

How to prevent Account Takeover

How to prevent Generative Artificial Intelligence (AI) & Fraud

Jargon Buster

Vishing and Telephone Scam Guide

 

 

What to do if you fall victim

What to do immediately if you fall victim

How to report fraud to Hang Seng

How to do if you suffer a cyber attack

 

Business Banking

Important Message to Readers and Internet Privacy Policy Statement 沪ICP备17018950号-2

© Hang Seng Bank Limited

This link may allow you to access another HSBC Group website. Please read the terms and conditions of the linked website, which may differ from the terms and conditions of Hang Seng Bank Limited's website.