SINGAPORE – If you receive an e-mail asking you to activate or update your expired banking digital token through a clickable link, it could be a scam.
In an advisory on March 27, the police said there have been at least 72 cases in which at least $484,000 was lost since Jan 15, after victims received e-mails claiming to be from DBS or POSB.
In the e-mails, victims would be told that that their digital token – an in-app authentication feature – has expired and that an activation or update would be required.
Via a link embedded in the e-mail, they would be directed to a phishing website resembling the DBS or POSB webpage.
They would then be misled into entering their banking credentials, credit or debit card details, or One-Time Passwords (OTPs).
Those targeted would later discover unauthorised activities or transactions in foreign currencies made in their banking accounts or cards.
