The Hong Kong Mandatory Provident Fund Schemes Authority (MPFA) issued an alert on phishing emails sent from noreply@hkmpf.com that falsely claim to be from the MPFA and or eMPF Platform Company Limited, warning recipients of suspicious logins and abnormal activity in their eMPF accounts and directing them to fraudulent websites. The MPFA clarified it and the eMPF Platform Company have no connection with the emails or fraudulent sites, and reiterated that eMPF services should be accessed only via the official eMPF website (https://www.empf.org.hk) and the eMPF mobile application. The eMPF Platform Company has reported the cases to the Police, and the MPFA advised the public not to click links or provide eMPF account information in emails not sent from the official domains “@mpfa.org.hk”, “@empf.org.hk”, “@support.empf.org.hk” and “@osc.empf.org.hk”, and to report to the Police if they clicked links and suspect personal data leakage.
Hong Kong Mandatory Provident Fund Schemes Authority 2026-04-02
Hong Kong Mandatory Provident Fund Schemes Authority warns of phishing emails impersonating MPFA and the eMPF Platform
The Hong Kong Mandatory Provident Fund Schemes Authority issued an alert on phishing emails sent from noreply@hkmpf.com that falsely claim to be from the authority or eMPF Platform Company Limited and direct recipients to fraudulent websites. It clarified there is no connection with these emails or sites, reiterated that eMPF services should only be accessed via the official website and mobile application, and advised the public to ignore non-official domains and report suspected data leakage to Police.