Email accounts hacked, leading to ‘unauthorised transactions’, Hong Kong’s biggest bank HSBC says

  • ‘Very small number’ affected by compromise of e-payment app PayMe, as police and Monetary Authority investigate
PUBLISHED : Friday, 09 November, 2018, 12:06am
UPDATED : Friday, 09 November, 2018, 3:16am

A number of HSBC’s PayMe app users had their e-wallets compromised after hackers targeted private email accounts, Hong Kong’s biggest bank said on Thursday.

HSBC said they were notified of the email accounts being hacked into, which led to unauthorised access of a “very small number” accounts of its e-payment app PayMe.

The bank stressed that PayMe was still secure and “has not suffered any breaches”.

An HSBC spokesman said about 20 accounts had been “potentially impacted” and that the total amount of money involved was “less than HK$100,000 (US$12,700)”.

“We have taken immediate action to block the threat and contacted the affected customers, who will be compensated for the authorised transactions,” the bank said in a statement.

It added that it had reported the cases to police and the Hong Kong Monetary Authority for further investigation.

A police spokeswoman said on Thursday evening the force would look into the incident.

Formal investigation to be launched into Cathay Pacific data breach

The incident came after the Monetary Authority said last month there were 10 suspected cases of fraud for a new, faster e-payment system.

Some HK$400,000 (US$51,000) was stolen from customers using the system, which allows the instant transfer of funds between banks and e-wallet operators.

PayMe, launched in Hong Kong last year, was not affected as it had yet to join the faster payment system.