Security Advisory

As digital transactions grow more common, scammers are using advanced tactics to exploit vulnerabilities and target individuals, resulting in significant financial losses for individuals.

Manulife Singapore staff and our financial representatives are committed to ensuring your security, and we will:
1. Never call on behalf of the Monetary Authority of Singapore (MAS).
2. Never request money transfers on behalf of MAS.
3. Never ask for money transfers to any bank account over the phone. For payment of premiums, do refer to https://www.manulife.com.sg/en/self-serve/make-payment.html for our official payment channels.
4. Never request for your personal or financial credentials, such as passwords, one-time PINs (OTPs), or security codes, via phone or email.

Scam Alert: Beware of Fraudulent Emails
Fraudulent emails claiming to be from Manulife have been received by some individuals.

Date issued: 24 July 2025

It has come to our attention that a phishing email (@riversidecactusandsucculents.de) was sent to our customers recently, offering gifts upon sharing of personal information. Please be advised that Manulife is not running such promotions.

If you receive any suspicious communication claiming to be from Manulife, do not respond, click any links or provide any personal information. For immediate assistance, you can contact the ScamShield Helpline at 1799 or reach out to our hotline at 6833 8188.

Protect Yourself from Scams: What Manulife Will Never Request from You

Date issued: June 2025

View advisory

If you're unsure whether a communication is legitimate:

Verify the source: Check if it originated from official Manulife communication channels. You can view our official channels in the "Manulife communication channels" tab.
Suspicious communication: If you receive communication claiming to be from Manulife that isn’t from our official channels, or encounter websites impersonating Manulife, consider the following actions:

If you are a victim

Contact the ScamShield Helpline at 1799 for immediate assistance.
Inform us via our hotline at 6833 8188 (available Monday to Friday, 9am – 5pm, excluding public holidays) or submit a form here.

If you wish to report fraud

Contact the ScamShield Helpline at 1799 for assistance, or submit a form to us here.

Please take note of the following authorized communication channels from Manulife:

SMS Sender IDs: Manulife, SG-MANULIFE
Email Address Domains: @manulife.com, @comms.manulife.com.sg, @manulifefa.com.sg, @manulife.com.sg, @longevity.manulife.com.sg
Website Domains: manulife.com.sg, go.manulife.sg, longevity.manulife.com.sg

To verify the authenticity of a Financial Representative, you may search their MAS representative number or full name in the Financial Institution Representatives Register at https://eservices.mas.gov.sg/rr.

Understanding the types of scams can empower you to recognize and avoid them, safeguarding your personal and financial information.

Here are some common scam techniques to be aware of:

Phishing - Fraudulent Emails

Phishing involves fraudulent emails designed to trick recipients into clicking malicious links or downloading harmful attachments, potentially leading to data theft or malware installation. These emails often appear urgent or important, prompting quick action without careful consideration. They typically contain:

Links to fake websites that mimic legitimate ones.
Attachments that install malware when opened. Once interacted with, scammers can collect sensitive information, such as login credentials, passwords, credit card information and personal information.

Phishing attacks pose significant potential losses for individuals including theft of money from bank accounts or credit cards and with the stolen personal information fraudulent crimes committed in the victim's name.

If you are uncertain whether a communication is legitimate, first verify if it originated from official Manulife communication channels.

Smishing - Instant Messaging (e.g. SMS, WhatsApp)

Smishing uses text messages (SMS or messaging apps like WhatsApp) to carry out phishing attacks. Scammers send deceptive messages, pretending to be from trusted sources, to trick recipients into sharing personal or financial information, clicking on malicious links, or downloading harmful software. As with phishing emails, interacting with these malicious links or replying to these messages can lead to the theft of sensitive information such as login credentials, passwords, and credit card information. Such stolen data may be used for unauthorized purchases or transfers.

Vishing - Voice Phishing

Vishing is another common form of phishing where scammers make phone calls or leave voice messages, creating a sense of urgency and pretending to be from reputable organizations, to convince individuals to reveal personal (Identification numbers, Date of Birth, Addresses, Login credentials) and financial details. Interactions with the scammers can result in huge monetary losses.

General cyber security tips:

Protect your credentials:
- Never share your login ID, password or One-Time Password (OTP) with anyone.
- Use strong, unique passwords for your accounts.
Ensure website authenticity and security:
- Always verify the URL before entering your login details. Look for the lock symbol and "https://" to ensure the site is secure.
- Always check the sender’s email address to ensure it's from a legitimate Manulife domain. Hover over the link to view the actual URL before clicking, and ensure it leads to an official Manulife website.
- Do not use public Wi-Fi or untrusted devices for financial transactions.
Keep your mobile device secure:
- Enable automatic updates for your device and apps.
- Avoid using jailbroken or rooted devices for financial and insurance transactions.
- Only download apps from trusted sources like the Apple App store and Google Play Store.
Maintain the security of your PC/laptop/table:
- Enable automatic updates for operating systems, software, and browsers.
- Install and regularly update antivirus/antimalware software from reputable companies (e.g. Norton, McAfee, Kaspersky, TotalAV, Bitdefender).
- Activate Windows Firewall and Windows Defender feature for Windows devices.
To verify the authenticity of a Financial Representative, you may search their MAS representative number or full name in the Financial Institution Representatives Register at https://eservices.mas.gov.sg/rr.
For more tips on protecting yourself from the latest cyber-attacks, visit the Singapore Cyber Security Agency Website.

What is Manulife doing to protect customer information?

Multifactor authentication
Manulife’s systems are secured using Multifactor authentication. This means besides using your login credentials, a One-Time Password (OTP), digital token or Singpass authentication is also needed before you can access our mobile app or customer portal.

Secure and encrypted website pages
Our webpages have the lock symbol and https:// in front of the URL to ensure our website is secure.

I suspect I have fallen victim to a scam or phishing attack. What should I do?

If you receive any suspicious communication claiming to be from Manulife, or encounter any websites attempting to impersonate Manulife, please report it immediately via our hotline at 6833 8188 (available 9am – 5pm, Mon-Fri, excluding public holidays) or submit a form here. You can also contact the ScamShield Helpline at 1799 for assistance.

If you suspect that your device or account details have been compromised, reset your password immediately. Then, turn on airplane mode and disable Bluetooth, mobile data and Wi-Fi. Run an anti-virus scan on your device. For further assistance with your Manulife account, please contact our hotline.

I have received a SMS / email from Manulife. How can I verify its authenticity?

Always check the sender’s email address to ensure it's from a legitimate Manulife domain. Hover over the link to view the actual URL before clicking, and ensure it leads to an official Manulife website.

Please take note of the following authorized communication channels from Manulife:

SMS Sender IDs: Manulife, SG-MANULIFE
Email Address Domains: @manulife.com, @comms.manulife.com.sg, @manulifefa.com.sg, @manulife.com.sg
Website Domains: manulife.com.sg, go.manulife.sg

How can I protect myself when accessing my Manulife account?

To help ensure your security, please follow these important precautions:

Always verify the URL before entering your login details. Look for the lock symbol and https:// to ensure the site is secure.
Never share your login ID, password or One-Time Password (OTP) with anyone, and avoid entering credentials on unverified websites or untrusted devices.
Verify Manulife’s website by typing the URL directly into the address bar of a web browser.

What should I do if I receive a phone call or message claiming to be from Manulife asking for personal details?

Do not respond or click any links. When in doubt, verify the request through Manulife’s official hotline or your Financial Representative.

SOLUTIONS

MANULIFE INVESTMENT MANAGEMENT

SUPPORT

GOALS

Fair dealing policy

Statement of personal data protection

Cybersecurity Advisory

Global

Are you looking for:

Security Advisory