JavaScript is currently disabled on this computer/device. As such, cookies for this site are currently disabled. In order to have access to all the features of our fully-optimised website, please enable your JavaScript settings via your browser. For a list of all the cookies we use and what they do, please read our Cookie Policy.

Navigation menu

You are in section Home Help Fraud and security Current Page

Fraud and security

Popular questions

Why do I need a Secure Key?

With digital fraud and hacking at a record high, new regulations came into effect in mid-September that were designed to help everyone's accounts be even safer.

This means that you’re no longer able to log on to Online or Mobile Banking using just your Online banking password and answer to your memorable question.

Instead, you’ll need to use a Secure Key.

A secure key is a type of two-factor authentication that generates a one-time security code each time you log on or authorise a payment.

A password is one level of security (or – one factor). But fraudsters can try and guess passwords, making them vulnerable. Two-factor authentication means there’s another layer of security (on top of your password) to keep you even more secure.

Setting up a Digital Secure Key on a new device

You can access our App on up to 3 devices. If you want to set up an additional device or switch device, you'll need to:

open the first direct App on your new device
enter your username
select an option to verify it's you, either using your full password and a one-time passcode sent by text, or via a QR code from one of your other devices (if you have one)
follow the on-screen instructions to complete the set up
create and confirm your new Digital Secure Key PIN.

If you've got a new device but no longer have access to the old one that you used to log on to our App, you should remove that device. To do this:

open the first direct App
go to 'Security Settings'
select 'Manage Devices'
remove selected device.

If you're using Online Banking, log on and select 'Manage Security' in the left-hand menu.

How do I report fraud?

If you think you've been the victim of any scam, feel you've been tricked into giving your security details or notice anything suspicious on your account, please call us as soon as possible.

Call 03 456 100 100 (lines are open 24/7, 365 days a year)

Text phone: 03 456 100 147

Calling from abroad: +44 113 234 5678

Text relay: +44 151 494 1260

Security

Secure Keys

What is a Secure Key?

Why do I need a Secure Key?

What are the benefits of a Digital Secure Key?

How do I get a Secure Key?

Forgotten your Digital Secure Key PIN?

Setting up your Digital Secure Key on your new phone

How do I switch to a Digital Secure Key?

Can I have more than one Secure Key or use someone else’s?

Digital Secure Key

What happens if the mobile phone with my Digital Secure Key on it gets stolen?

What happens if I want to sell or pass on the mobile phone I have my Digital Secure Key on?

What happens if I change or sell the phone I have my Digital Secure Key on?

Physical Secure Key

What happens if I lose my Physical Secure Key?

What happens if my Physical Secure Key breaks?

My Physical Secure Key's battery has run out

My Physical Secure Key is showing an error message on it

I'm going to have difficulty using the buttons or reading the Physical Secure Key display. What should I do?

What we need to keep you safe

How can I send my documents?

What if I get an error message what trying to upload my ID?

What can I use for proof of ID?

What can I use for proof address?

How do I get my documents certified?

When do I need to send this information?

Why do you need a beneficiary address to make a foreign payment?

What happens if I don't provide the information?

What will you be doing with the data? How will it be stored and protected?

Why do you need to share customer data across the HSBC group?

How to keep yourself safe

How we keep you safe

Fraud

Fraud and common scams

How do I report fraud?

Authorised Push Payment (APP) scams

What's an APP scam?

New rules for APP scam reimbursement

Common APP scams

Email fraud and phishing

What are email scams/phishing?

How do I spot a phishing email?

What warning signs should I look out for?

The email says it's from first direct - is it?

How do they get my email address?

How do they know where I bank?

What is an intercepted email scam?

How do I spot an intercepted email scam?

What should I do if I think I have a fraudulent email?

Online scams

What is an online dating scam?

How do I spot an online dating scam?

What can I do to keep myself safe from online dating scams?

What should I do if I think I I’ve been a victim of an online dating scam?

What is an online shopping scam?

How do I spot an online shopping scam?

What can I do to keep myself safe from an online shopping scam?

What should I do if I think I I’ve been a victim of an online shopping scam?

Telephone fraud and vishing

What are phone scams/vishing?

How do I spot a vishing call?

What should I do if I think I’ve had a vishing call?

Text message fraud and smishing

What are text message scams/smishing?

How do I spot a text message scam?

What can I do to keep myself safe from text message scams?

What should I do if I think I’ve had fraudulent text message?

Computer takeover scams

What are computer takeover scams?

How do I spot a computer takeover scam?

What can I do to keep myself safe from computer takeover scams?

What should I do if I think I’ve been a victim of a computer takeover scam?

Investment scams

What is an investment (boiler room) scam?

How do I spot an investment (boiler room) scam?

What can I do to keep myself safe from investment scams?

What should I do if I think I’ve been a victim of an investment scam?

Courier scams

What are courier scams?

How do I spot a courier scam?

What can I do to keep myself safe from courier scams?

What should I do if I think I’ve been a victim of a courier scam?