To click or not to click?

Phishing scams have unfortunately been in the news again. Here are some simple steps you can take to avoid falling victim to common scams online.



Imagine losing your life savings in a matter of minutes. That nightmarish scenario was reality for many victims of the recent OCBC Bank phishing scam, which saw S$13.7 million lost from the accounts of 790 bank customers.

Phishing scams are online attacks in which cybercriminals trick people into handing over their confidential information, such as bank details, passwords and credit card information by creating websites, emails and text messages that seem to come from a legitimate organisation, such as a government agency or a bank.

In the last few years, Singaporeans’ financial activity has increasingly shifted online – a trend accelerated by COVID-19 as digital finance and e-payments were encouraged to maintain safe-distancing measures. However, this has also resulted in an increase in phishing scams and hacking attempts. In the last five-and-a-half years, online scammers have stolen close to S$1 billion from people living in Singapore, with 2020 seeing the highest amount of S$268.4 million lost.

Instead of going back to the old days of stashing money in Milo tins and piggy banks under your bed, these few simple checks can help to ensure that your precious savings are safe from online criminals and their phishing methods.


Cybercriminals have developed increasingly sophisticated ways to trick unwary consumers, so it pays to be extra vigilant when making online transactions.

Phishing has become more sophisticated, as cybercriminals are able to spoof the Short Message Service (SMS) Sender IDs of real banks. This means that their fraudulent text messages will be sorted into the same SMS thread as legitimate ones. This causes victims to assume the messages are real and act on them accordingly.

However, there are still some differences. Phishing messages often have errors in grammar or spelling.  They may use threatening language or issue ultimatums to scare victims (“Your account will be deleted if you don’t act now!”).

If they arrive via email, their addresses won’t match those belonging to the real organisation they’re imitating – for example, a phishing email might be from instead of For WhatsApp messages, check for a green check mark next to the organisation name. This indicates that the message is from the organisation’s official business account.

In addition, if you accidentally click on a phishing website, you might notice that it starts with ‘http’ instead of ‘https’. The latter denotes a secure version used by legitimate websites like banks and online retailers, to protect your login credentials.


If you receive a message that claims to be from a trusted organisation, don’t click on the link automatically. Besides, banks in Singapore have recently announced that they’ll stop using clickable links in emails and SMSes for greater security. To see where a link leads to, mouse over it on your computer, or hold it down with a finger on your phone to see the full address.

It’s safer to log in using the bank or organisation’s app on your phone, or by visiting their website. If the message is real, you should see a notification in the app or on the website. If you don’t see anything but would still like to check, it’s safer to call the organisation. Don’t use any numbers provided in the suspected message. You may end up speaking to a scammer instead!


No genuine organisation will ever ask for your personal information (like NRIC number, Singpass login, bank account details or passwords) online. Should a bank or government agency require sensitive information, they would ask you to visit a branch or office in person.


Cybercriminals have developed increasingly sophisticated ways to trick unwary consumers, so it pays to be extra vigilant when making online transactions.

Phishing messages might try to tempt victims with freebies, chances to win prizes or unusually large discounts on popular goods. Last year, NTUC FairPrice alerted customers to an email – supposedly from FairPrice Online – that offered people S$80 for answering a few survey questions. If the offer is suspiciously generous, it’s probably fake.


Finally, phishing attacks often rely on a victim being distracted or panicked, two emotions which override their natural caution.

For example, one victim of the OCBC Bank phishing scam was anxious when she received a fake text message claiming that her account would be suspended, as she needed to make several transactions to her children’s bank accounts. Scammers eventually took close to S$100,000 from her and her children’s bank accounts.

Instead of reacting immediately to any messages or emails, take the time to evaluate their content. Don’t perform transactions or disclose banking details when you’re in a rush, or distracted. Set aside the time to sit down and focus fully on the information presented to you. This might take a few extra minutes, but it could save you thousands of dollars in the long run.

In The Force

Empowered to save lives

With myResponder, SCDF ORNSmen such as Sergeant1 (V) William Lim Wei Loon are always prepared for emergencies.


Community First Responders (CFRs) have always played a pivotal role in times of need. Smart solutions like the Singapore Civil Defence Force (SCDF)’s myResponder mobile application (app) significantly enhance their response to emergencies. Launched in 2019, more than 100,000 CFRs have registered with the app. These responders include members of the public, as well as in-house personnel such as the SCDF Operationally Ready National Service (ORNS) men and volunteers from the Civil Defence Auxiliary Unit (CDAU).


“I would have the myResponder app turned on, even at work, so that I could respond to any emergency happening nearby,” shared SGT1 (V) William Lim Wei Loon, an Operationally Ready National Service (ORNS) Fire and Rescue Specialist with 1st SCDF Division, who works as a retail supervisor at NTUC FairPrice.

SGT1 (V) Lim completed his full-time National Service (NSF) in 2008 and joined the CDAU as a volunteer firefighter in 2011. “Since my NSF days, I have been trained to be very alert to my surrounding environment, and my first instinct is to always check for any emergency nearby,” he added.


It was through the myResponder app that SGT1 (V) Lim was alerted to a rubbish bin fire at a void deck in Bukit Batok at about 3am one morning. When he arrived at the location there was neither a fire hose nor an extinguisher nearby.

After surveying the area, he spotted a funeral wake a block away and rushed over to request for assistance to put out the fire. “Whenever I respond to a fire incident, I have to be creative enough to find an effective solution to a problem in the fastest way possible,” said SGT1 (V) Lim. “The people there were very kind and they helped me to extinguish the fire using pails of water from the temporary toilets located outside the funeral hall.”

Besides responding to the myResponder app’s alerts, SGT1 (V) Lim also extinguished a rubbish bin fire near his home two years ago. He was alerted to the blaze after hearing an explosion in his neighbourhood. He rushed to the location but the flames had already spread to a minivan parked nearby.

“As I did not want any passers-by to be harmed, I put out the fire with two fire extinguishers that were taken from the nearby coffeeshop before the firefighters arrived. At the same time, I had to ensure that no one was injured,” said SGT1 (V) Lim.

He added: “As a CFR, I am touched whenever a member of the public thanked me for helping him or her through a crisis. That keeps me going as a volunteer with the SCDF!”

Find out more about how you can make a difference in your community with the CDAU and how other MHA volunteers are helping to keep their neighbourhoods safe.

Visit and for more information about their volunteer schemes or connect with the Home Team Volunteer Network on InstagramFacebook or TikTok.