HSBC, Santander and Bank of Scotland Online Payment Scam Alert

Ironically, the new rules to help protect us all when making online payments over £30, are already being used by fraudsters against us. The new rules, known as “Strong Customer Authentication”, are being phased in over the next 18 months and will increase the security of transactions by using a combination of 3 categories. Something you know, (e.g. PIN), something you have, (e.g. card/mobile) and something you are, (e.g. fingerprint). Fraudsters are sending out fake emails claiming to be from major banks asking customers to log on to fake sites and provide banking credentials and personal data. In 2018 more than £500 million was lost to fraudulent authorised bank payments.


Tips and Advice

  • Dear customer? – Most scam emails are not addressed personally, so avoid any emails or texts which do not address you by name. However, it should be noted that increasingly fraudsters have through data breaches the ability to personalise emails so do not solely rely on this tactic
  • From who? – Who does it actually come from, click on the sender to check, it’s not fool proof but it catches a lot
  • Personal means private! – Do not divulge personal details unless you are certain who you are sharing it with, and certainly not PIN numbers!
  • Report it – Your email inbox will have a spam button, this is one of the main ways Outlook, Gmail etc. machine learn on how to block spammers
  • ID Protection –  If you’re worried about identity fraud and would like to protect your identity contact CIFAS
  • Still Unsure? – Join Reassura 0800 888 6400 and one of our fraud advisor’s will help you to stay safe


To report a fraud and receive a police crime reference number call Action Fraud on 0300 123 2040 or use their online fraud reporting tool.

If you have found this article helpful please share it on Facebook or Twitter to help others stay safe from scams and fraud.

Never miss a Scam Alert – Sign-up here, it’s FREE