[Important Information] Phishing E-Mail and Fraudulent Website Alert

Shinsei Bank has received reports of a possible phishing e-mail scam and fraudulent website, both of which mimic the appearance of genuine Shinsei Bank emails and website in order to lure customers into disclosing confidential customer information such as security codes.

Shinsei Bank does not request customers to provide confidential information such as passwords or security codes by e-mail, telephone or mail.

[Phishing E-Mail and Website Description]

  • Email Subject Line:
    yVszdvȂm点(Translation:yShinsei Bankz'Important Information'),uyVsz{lF؃T[rXv(Translation:yShinsei Bankz'Identity Verification Service'), or 'uyVsz[AhX̊mF', (Translation: 'yShinsei Bankz'Confirm your e-mail address').
  • Message Content:
    While there are several different phishing messages circulating, all message attempt to lure recipients to a phishing website of similar design to the Shinsei PowerDirect page to enter and divulge their personal information.
  • Known message patterns:
    • Pattern 1 (in Japanese): "Our banking system has been updated and we need to verify your account. Please access and register your account in order to avoid your account being rendered invalid."
    • Pattern 2 (in Japanese):"Hello! Recently, some of our customersf information have been stolen off of a net shop server and customer information has been leaked. In order to maintain the safety of your account, our banking system has been updated. Please access and register your account via following page, in order to avoid your account being frozen."

Customers are advised that this e-mail is an attempt to collect personal or confidential information. In the event that any customer encounters a suspicious website or email, they are requested to not enter any information. In the event a customer has entered their password into such a website or discovers unauthorized withdrawals from their account, they are requested to contact our call center, Shinsei PowerCall, toll-free at 0120-456-022 in order to report the website and to address the issue.

While Shinsei Bank is rigorous in protecting its customers' information, customers are urged to educate themselves on the risks of online scams and to take an active role in ensuring the security of their own accounts.

Addressing the Malware Attack

Those encountering a suspicious screen at Shinsei PowerDirect and other Internet banking services are requested to follow the procedures described below to ensure the security of their account as there is a possibility the PC being used to access the site is infected with a virus, spyware, or other malware.

Malware Webpage Encountered, but NO Information Entered

  1. Update the security software you use to remove a virus.

In case that security software is not employed, inquire to the customer service center of your PC manufacturer.

  1. Update the OS (e.g. Windows) for the latest version.

Additional Steps to Take if Malware Webpage Encountered and Information Entered

  1. Change PIN and Password.

Call our call center, Shinsei PowerCall at 0120-456-022.

  1. Replace your Security Code Card.

Call our call center, Shinsei PowerCall at 0120-456-022. When connected, press *1 on your keypad to directly reach an operator and inform that the PC may be infected with a virus. Shinsei PowerDirect services will be suspended until the Bank is informed of arrival of Security Code Card from customers.

Shinsei Bank employs various security measures to ensure the safety and security of our customers, and we would like to request the cooperation of customers in taking appropriate security measures when using Internet banking to help protect their accounts.

April, 2015
Shinsei Bank