Beware of Fraudulent MPFA SMS Messages and Websites! MPFA Will Not Request Personal Information Updates via SMS
2026-06-01
Recently, phishing SMS messages falsely claiming to be issued by the Mandatory Provident Fund Schemes Authority (MPFA) have emerged. These messages claim that users “have not updated their personal information for their MPF accounts” and attempt to lure them into clicking embedded hyperlinks that direct them to fraudulent websites. MPFA has also identified two fraudulent websites impersonating the Authority in an effort to deceive the public into providing personal information. An MPFA spokesperson clarified that neither MPFA nor eMPF Platform Company Limited (eMPF Company) has issued any such SMS messages or has any connection with the fraudulent websites. The two fraudulent websites, with URLs “mpf8[.]xyz” and “mp-f[.]org”, falsely claim that the administration of MPF schemes has been transferred to those websites to deceive the public into providing personal information.