[Important Information] Phishing E-Mail and Fraudulent Website Alert

SBI Shinsei Bank has received reports of a possible phishing e-mail scam and fraudulent website, both of which mimic the appearance of genuine SBI Shinsei Bank emails and website in order to lure customers into disclosing confidential customer information such as security codes.

SBI Shinsei Bank does not request customers to provide confidential information such as passwords or security codes by e-mail, telephone or mail.

[Phishing E-Mail and Website Description]

  • Email Subject Line:
    【SBI新生銀行】重要なお知らせ(Translation:【SBI Shinsei Bank】'Important Information'),「【SBI新生銀行】本人認証サービス」(Translation:【SBI Shinsei Bank】'Identity Verification Service'), or '「【SBI新生銀行】メールアドレスの確認', (Translation: '【SBI Shinsei Bank】'Confirm your e-mail address').
  • Message Content:
    While there are several different phishing messages circulating, all message attempt to lure recipients to a phishing website of similar design to the PowerDirect page to enter and divulge their personal information.
  • Known message patterns:
    • Pattern 1 (in Japanese): "Our banking system has been updated and we need to verify your account. Please access and register your account in order to avoid your account being rendered invalid."
    • Pattern 2 (in Japanese):"Hello! Recently, some of our customers’ information have been stolen off of a net shop server and customer information has been leaked. In order to maintain the safety of your account, our banking system has been updated. Please access and register your account via following page, in order to avoid your account being frozen."

Customers are advised that this e-mail is an attempt to collect personal or confidential information. In the event that any customer encounters a suspicious website or email, they are requested to not enter any information. In the event a customer has entered their password into such a website or discovers unauthorized withdrawals from their account, they are requested to contact our call center, PowerCall, toll-free at 0120-456-022 in order to report the website and to address the issue.

While SBI Shinsei Bank is rigorous in protecting its customers' information, customers are urged to educate themselves on the risks of online scams and to take an active role in ensuring the security of their own accounts.

Addressing the Malware Attack

Those encountering a suspicious screen at PowerDirect and other Internet banking services are requested to follow the procedures described below to ensure the security of their account as there is a possibility the PC being used to access the site is infected with a virus, spyware, or other malware.

Malware Webpage Encountered, but NO Information Entered

  1. 1. Update the security software you use to remove a virus.

In case that security software is not employed, inquire to the customer service center of your PC manufacturer.

  1. 2. Update the OS (e.g. Windows) for the latest version.

Additional Steps to Take if Malware Webpage Encountered and Information Entered

  1. 3. Change PIN and Password.

Call our call center, PowerCall at 0120-456-022.

  1. 4. Replace your Security Code Card.

Call our call center, PowerCall at 0120-456-022. When connected, press *1 on your keypad to directly reach an operator and inform that the PC may be infected with a virus. PowerDirect services will be suspended until the Bank is informed of arrival of Security Code Card from customers.

SBI Shinsei Bank employs various security measures to ensure the safety and security of our customers, and we would like to request the cooperation of customers in taking appropriate security measures when using Internet banking to help protect their accounts.

April, 2015
SBI Shinsei Bank

Close