Cyber Fraud and Recovery in Hong Kong


The number of cases of technology-based crimes has increased dramatically in Hong Kong as the COVID-19 has mforces employees to work from home which often leaves their employers more vulnerable to being attacked by fraudsters. This article provides a glimpse into the latest online scams involving Hong Kong, the warning signs or red flags of online fraud to be on the lookout for, and the steps a victim of fraud can take to protect his assets against fraudsters.

If you believe you are a victim of cyber fraud, jump ahead below and take immediate action before it is too late.

Why Hong Kong?

Hong Kong is one of the freest economies in the world. Incorporating a new company can be done quickly (often within a day), easily, and at low a cost. Although the ease to set up new companies is meant to foster economic development and entrepreneurial initiatives, it also provides the perfect framework for fraudsters for creating disposable companies for carrying out fraud and money laundering activities.

Common Types of Cyber Fraud

In recent years, online fraud schemes have become more and more sophisticated. Gone are the days when these fraudulent schemes were perpetrated by unsophisticated individuals operating out of third-world countries. Nowadays, these crimes are carried out by criminal syndicates that employ a wide array of professionals (e.g., lawyers, accountants, financial experts, linguists, computer specialists) who target specific organisations or individuals using uniquely tailor-made approaches.

1. Romance and Online Dating Scam

Fraudsters use online dating apps, dating websites, or social media sites to connect with their victims and attempt to establish a relationship with them. Online romance scam is, in our experience, one of the most common ways that romance scammers are able to convince their victims to part with their money. 

Pig-Butchering Scam (殺豬盤)

Pig-Butchering scams are extremely common nowadays. The expression comes from China where the victim of the scam is referred to as the "pig" because he or she ultimately gets slaughtered financially by the fraudsters. This type of scam usually involves a fraudster pretending to have a romantic interest towards his or her victim, gaining the affection and trust of the said victim, and then using that goodwill to get the victim to lose a lot of money in fake investment opportunities.

Traditional Online Dating Scam

Traditionally the fraudulent love interest would often pretend to be an overseas military officer, international businessman, or professional (e.g., pilots, engineers, or doctors). Initially, the fraudsters will do their best to establish trust with their victims before inventing reasons to ask them to urgently send money to designated bank accounts located overseas to solve their sudden and urgent problem.

Fraudsters will usually ask their victim to wire transfer them the money to pay:

  • custom fees to retrieve something
  • for a plane ticket or other unforeseen travel expenses
  • for surgery or other medical expenses
  • gambling debts
  • the fee for a visa or other official travel documents
  • business losses
  • the handling fees for a large sum of money to inherit

Obviously, the promise to repay never materialise and the victim is left in the lurch.

Unfortunately, these fraudsters are often so successful that it takes an inordinate amount of time for the victims to realize that they have been defrauded. It is not uncommon to meet clients who refuse to believe that they have been defrauded despite strong evidence to the contrary.

For further details, you can refer to our article on Romance and Online Dating Scam.

2. Business Email Compromise

Business Email Compromise (also known as “BEC”) is a type of online scam where a fraudster either illegally gains access to a business email account or creates an email account using a domain name that is almost identical to the business targeted and uses the said account to impersonate an employee of the company owner’s identity and get unsuspecting employees to unknowingly help the fraudster to defraud their own company.

This type of fraud relies on cybersecurity deficiencies of the target company or the recipient not paying close attention to the email address of the sender. Often, only one letter in the domain name of the fraudster is different from the domain name used by a real company ( vs Otherwise, in many cases, the email sent by the fraudsters are virtually indistinguishable from the original one.

Our detailed article on business email compromise scams is available here.

3. CEO Scam

A CEO Scam is where the fraudsters use various means to impersonate the Chief Executive Officer (or high-level executive) of the company in an attempt to trick an employee in the accounting department into executing an unauthorised bank transfer. The employee targeted by this type of scam is often asked to keep the transaction secret by the fake CEO for a multitude of reasons. This type of scam is often perpetrated in conjunction with the business email compromise type of attacks.

4. Online Shopping Scam

Fraudsters operate elaborate online shops where they falsely advertise sought-after products with competitive prices, but they invariably keep the upfront payment and send nothing in return. In the wake of the COVID-19 pandemic, we have seen many clients being scammed whilst attempting to purchase medical supplies in China from websites purporting to have the medical supplies that were in shortage worldwide. In most instances, victims receive nothing from the fraudsters or get something of zero value (one victim received containers full of medical waste).

5. Business Loan Scam

Business loan scams have become more prevalent in 2020 as companies around the world are experiencing financial troubles and have had difficulties finding local financial institutions willing to provide loans for their businesses. In their desperation, these companies have turned to the internet in the hope to find financial institutions willing to lend them money, and fraudsters have seized on this opportunity to scam them.

These fraudsters operate through elaborate websites masquerading as legitimate financial organisations, who often promise low-cost interest-free loans in exchange for an upfront fee. That upfront fee is often disguised as a transaction fee (e.g., bank transmission, administrative and collateral facility fee, SWIFT Transmission Charge).

Once the fraudsters receive that “transaction fee”, one of two things will happen. Either the fraudsters will invent a reason for requesting more money, or they will immediately disappear without providing any of the funds promised.

Bottom Line: if the terms of the loan being offered are too good to be true, you are likely being scammed.

Our detailed article on business loan scam is available here.

6. Investment Scam

Fraudsters often approach their victims through messaging platforms (e.g., WhatsApp, Line, WeChat) and by advertising over social media (Facebook, Instagram), claiming to be a stockbroker, a portfolio manager, or working for a fund, and offering low-risk investments in overseas companies with high returns. They tend to have photoshopped graphs showing the incredible returns that their investments have generated.

Fraudsters then ask their victims to deposit a sum of money into the bank account of an overseas company. Once the funds are deposited, they are immediately siphoned out and transferred to the four corners of the world.

6.1 Fake Broker Scam (aka MT4 and MT5 scam)

We are seeing an increasing trend of victims falling prey to fraudsters purporting to be a branch of the legitimate brokerage firm. In such cases, the fraudsters create fake websites and onboard victims using trading platforms software MetaTrader 4 (MT4) and MetaTrader 5 (MT5) which allow the fraudsters to simulate transactions and give a false sense of confidence to the victims. The victims then, emboldened by the gains they believe they have made on the fake trading platform, invest more money trying to capitalise on the opportunity. The 

In our experience, these fraudsters tend to operate within the People's Republic of China or overseas and do not have any accreditation with any financial regulators (e.g., Securities and Futures Commission).

If you wish to have to more information on investment scams, you can read our investment scam article.

6.2 “Pump and Dump” Scam

Fraudsters infiltrate online forums, dating applications, and social media platforms and convince unsuspecting victims to buy specific stocks (usually penny stocks listed on the Growth Enterprise Market (“GEM”) board and trading at low volume). The Fraudsters claim to possess inside information that will ultimately lead the said stocks to increase in value and promise the victims to tell them when it is the right time to purchase and sell the stock. 

However, once the victims buy these stocks in sufficient quantity (the stock is considered “pumped up”), the fraudsters sell all their shares (liquidate their position) which then causing the price to drop dramatically. The victims are then stuck with a stock that has lost a considerable amount of its value. For more information, please consult our article on pump and dump scam.

7. Crypto Scam

Unfortunately, the amount of cryptocurrency scams out there is truly staggering. Much like the mythical Hydra of Greek literature, authorities are unable to control the situation insofar as cryptocurrency scams are concerned.

You can consult the article that we have prepared and deals with this topic of crypto scam in greater details.

Steps to Take

First Step: Gather all the Relevant Documents

You should immediately gather all the relevant documents (e.g. emails, banking records, invoices, screenshots) regarding the fraudulent transaction; anything relevant to help the authorities to understand your case and enable them to take action as soon as possible.

However, you need to be selective, if you provide the police with too many documents early on, you are at risk of inadvertently causing a delay in your case being processed.

Second Step: Report the Crime to the Hong Kong Police

This is, in many respects, one of the most crucial steps you can take to protect the assets that have been misappropriated by the fraudsters.

If you are physically in Hong Kong

Bring all the relevant documents related to your case and visit any of the report rooms of the Hong Kong Police Force (addresses of the physical locations) and make a complaint to the reporting police officer on duty at the station. The job of that officer is essentially triage, he needs to have a basic understanding of your case and determine whether or not, in the officer’s view, a crime has been committed.

If the officer believes your case is worth investigating, you will be asked to meet with an inspector and give a formal statement about your case and identify who the suspects are. At that point in time, assuming that the bank account of the fraudster is in Hong Kong, the inspector may, at his discretion, take steps to have the bank account temporarily frozen. It is important to ask the inspector whether he/she intends on freezing the account. This information will be very important when you seek advice on your case from a lawyer.

If you are outside of Hong Kong

You have two options, either file an online report with the Hong Kong Police Force or instruct a Hong Kong solicitor to make a report in person to a police station. Based on our experience, fraud cases occurring outside of Hong Kong but involving individuals or companies based in Hong Kong are usually treated as money laundering cases by the Hong Kong Police.

First Option: Filing an Online Report

You can file an online report with the Hong Kong Police Force directly on its website (link here). You will be asked to provide all your contact details, a summary of your case (including the details of your case), and allowed to upload supporting documents as well. In this regard, we have prepared a guide on how to report a cyber crime or internet scam to the Hong Kong Police.

Initially, the Hong Kong Police will assign a police officer to your case and that officer will follow up with you by email and may ask you additional questions regarding your case. Later on, the officer will ask you to either come to Hong Kong to give a formal statement or instruct a Hong Kong solicitor to make a formal statement on your behalf.

Second Option: Instructing a Solicitor to make a Report on your Behalf

Instructing a solicitor at this stage is a strategic decision. Whilst it is undoubtedly an unwelcomed expense at this stage, where time is of the essence, it can sometimes truly make a difference ultimately. An experienced solicitor tasked to report the scam will know exactly how to communicate the information quickly to the police, provide them with all the necessary information for them to take action (e.g., freeze the bank account(s) of the fraudster(s)) and make a formal complaint on your behalf against the fraudster(s).

At the risk of sounding self-serving, this is an option that you should carefully consider.

Third Step: Alert your Bank

You should inform your bank as soon as possible about the fraudulent transaction and demand that your bank attempts to recall the funds. The window of opportunity for such a procedure is very small, and it will require you to act very quickly.

Fourth Step: Contact a Hong Kong-based Law Firm

You should consider appointing a solicitor at your earliest opportunity so that you can be advised as to what options (if any) are available to you to protect your assets against fraudsters. We have listed below the most common options available to help to protect and recover assets.


  • Freezing Order (aka Mareva Injunction): An application can be made to the court to permanently freeze the assets of the defendant and prohibits him from disposing of the same. Once the relevant bank receives a copy of the freezing order, it will freeze the account until the court discharges the order or a judgment is obtained and enforced against the account.
  • Disclosure Order (aka Norwich Pharmacal Order): A Norwich Pharmacal Order is an order for disclosure against an innocent third party (e.g. internet hosting services, bank) to gather information in support of commencing proceedings against the fraudster.
  • Bankers’ Books Evidence Order: Banks in Hong Kong have a duty of secrecy in respect of the affairs of their customers. However, the court can order a bank to provide a third party (e.g. a victim of online fraud) with access to specific entries in the records of the bank.

Depending on the circumstances, it is often recommended, as a way to manage legal costs to simply just wait for the Hong Kong Police to freeze the relevant account(s) and inform the victim whether there is or not a material amount of funds in the account (more than HK$100,000.00). Sometimes the exact amount will be shared but it is at the complete discretion of the inspector in charge of the case. 

Later Stage:

We recommend waiting until it is confirmed (by the police directly or by the bank through the court) that there are sufficient funds left in the account of the fraudster before commencing legal proceedings and attempting to recover the funds.

  • Legal Costs Involved: That part is always difficult for a lawyer to assess because there are so many variables involved that will affect the costs. Initially, the biggest unknown variable is whether or not the alleged fraudster (or the company or person that received the funds) will put forward a defense in the proceedings. In this regard, while it is often the case that fraudsters will not waste time defending legal proceedings against their victims, we have seen instances where the stolen funds are used against the victim. It then becomes a war of attrition against the victim who, in many cases, already costs sensitive.
  • Security for Costs: If you are domiciled out of Hong Kong or if your company is incorporated outside of Hong Kong, you maybe be required by Hong Kong courts to pay security for costs. It means that the court will require a foreign plaintiff to pay money into court as a security for the estimated legal costs that the defendant will incur defending the proceedings. This is designed to prevent a situation where a defendant successfully defends proceedings against the plaintiff but has to commence proceedings overseas to recover its legal costs.
  • Timeline: How much time will it take ?: That is another hard question to answer these days, especially with the disruptions caused by COVID-19. As a rule of thumb, if the fraudster does not put forward a defense, and the case is a straightforward one, it will normally take six (6) to nine (9) months to obtain a judgment and probably an additional month to get the bank to process the order. In more complicated cases, it can take between one and two years to get a final judgment.

Fifth Step: Protect your Personal Identity and Information

In the event that you are a victim of identity theft or made available identification documents to the fraudsters, the HKSAR Government recommends that you take the following measures:

  • Seek assistance from the Hong Kong Computer Emergency Response Team Coordination Center (HKCERT). (Link)
  • Complain to the Privacy Commissioner for Personal Data (PCPD) if personal information is involved. (Link)
  • Report to banks, credit card issuers, or related online service providers immediately if an account is suspected to have been compromised.

Additional Questions

If you have additional questions which are not addressed here or wish to schedule an appointment to discuss your case, please contact us by telephone on +852 2176 4777, by WhatsApp (+852 9547 5353) or by email at [email protected].

Victim of Internet Fraud ?