Singapore. The Government Technology Agency of Singapore (GovTech) informed Singapass users through their Facebook Post (14 March) about the new scam involving fake SMS alerts.
Singpass is a trusted digital identity for easy and safe access to over 1,700 government and private sector services online and in-person. Users can transact over government counters to prove their identity and be accessible via the Singpass app. They can use it to sign legal documents digitally.
Recently, a fake SMS resurface telling users to reactivate their expired Singpass account. The GovTech shared that the SMS contains a link to a fake website phishing for highly confidential information. The website asks for the user’s Singpass ID, password and two-factor authentication (2FA) details.
A police report has already been lodged. Furthermore, the reported website has been blocked based on GovTech.
GovTech has informed the users to remain vigilant with their online transactions.
They have provided some tips on how to avoid online scams.
- Make sure to check the website domain. The official Singpass website is https://www.singpass.gov.sg/.
- Remember that Singpass does not send SMS with hyperlinks. Do not click any links from the unverified sender.
- If you are in doubt about the messages you receive, always verify them with the official agency or organisation.
If you suspect that you have become a victim of phishing sites, make sure to take action immediately. GovTech has provided immediate steps that you need to follow.
- You must immediately reset your Singpass password at go.gov.sg/reset-sp-pw.
- Check your transaction history. Find out any suspicious transactions.
- You may provide the details to the Police by calling the Anti-Scam Hotline at 1800-722-6688. You may also make submissions at www.police.gov.sg/iwitness.
Furthermore, you can contact the Singpass helpdesk at 6335 3533 for help.