Interac e-Transfer® interception fraud and safety

Interac e-Transfer interception fraud is a growing trend. By using stolen personal information and guessing security answers correctly, fraudsters can divert and deposit e-Transfer transactions to their accounts. Protect your accounts by understanding your responsibilities as a sender and recipient.

Notice anything suspicious? Let us know.

What you need to know

Don't enter personal information on websites linked from suspicious emails or texts. Look for signs, such as spelling mistakes or lack of personalization.
As a sender, make your security question and answer unique and difficult to guess. Only share security answers over a secure channel.
As a recipient, register for Autodeposit and make difficult and unique passwords for your accounts.

How does Interac e-Transfer interception happen?

Interac e-Transfer interception occurs when a fraudster diverts a legitimate money transfer to their account and deposits the money. Interception can happen when your email has been hacked.

Fraudsters get you to provide personal and account information by sending texts or emails that appear to be from legitimate sources. Selecting the links and inputting your personal information such as usernames, PINs and passwords can expose your email to scammers or make you susceptible to malware.

Once fraudsters have access to your email account, they’re able to see the notifications and links for your e-Transfer transactions. Fraudsters can either guess the correct security answer, use previous answers or check for emails containing the security question and answer to redirect the funds into their accounts.

From: notify@payments.interac.ca
Sent: Monday, July 10, 2017 6:39 PM
To: [Client]
Subject: INTERAC e-Transfer: [large company or tax authority] sent you money.

Hi [Client Email]

You have received $456.00 (CAD) from [large company or tax authority]

Deposit your money

Expires: July 28, 2017

An example of a Interac e-Transfer® branding phishing email.

Tips to stay safe when using Interac e-Transfer

As a sender:

Only share the answer to your security question with the recipient over a secure method of communication, such as over the phone. Don’t share the answer via email, text or on social media.
Create a unique security question that only you and the recipient will know. Use a variety of characters (including letters, numbers and symbols) to strengthen your answer.
Don’t include the answer in your security question.
Don’t reuse the same security question and answer for multiple recipients.

As a recipient:

Deposit your money automatically without answering a security question when you register for Autodeposit.
Create strong and unique passwords to protect your bank, email and social media accounts. Avoid including information that’s easy to guess, such as birthdates or names.
Don’t share your passwords with anyone or use the same password for all your accounts.
Don’t suggest multiple senders use the same security question and answer.

Our promise for your money

If you've been affected by fraud and have met your responsibilities to keep your accounts safe, we'll help you get your money back. To learn more about the security guidelines for your accounts, review our Digital Banking Guarantee.

Notice anything suspicious? Let us know

Report fraud

Explore more about Interac e-Transfer fraud

Interac Opens in a new window.

Learn how to recognize and protect yourself from email fraud and phishing scams.

Canadians Bankers Association Opens in a new window.

Read about the latest news and trends in fraud awareness and prevention.

Canadian Anti-Fraud Centre Opens in a new window.

Report fraud when it happens and track the latest data on fraud happening in Canada.