Online, text and email fraud

Report online fraud

If you think you may have been a victim of fraud (email fraud, text message fraud, identity fraud, phishing, spyware), send an email to fraud@cibc.comOpens your email app.. Make sure your email includes:

  • A description of the fraudulent incident
  • Attachments of any fraudulent messages you received and anti-virus or anti-spyware scan logs

What is online, email and text fraud?

Banking fraud comes in many different forms. Some of the most common ways fraudsters try to get access to your banking information is through suspicious emails, texts or online activity. This page outlines the major types of online, email and text fraud and how you can protect yourself from it.


Phishing is a type of fraud in which fraudsters try to gain access to your banking information through fake emails and texts. These emails or texts claim to be from CIBC and will often ask you to share your PIN, SIN or any other personal information that they could use to steal your identity or enter your bank account. If there are any links in the emails or texts you receive, double-check the link to make sure you’re being directed to a legitimate CIBC-owned website. Phishing attacks are common, and learning the red flags are important to protect your financial information.

There are often signs that a text or email isn’t legitimately from CIBC. Refer to the information below for what you can expect in a message from us, and what we will never send you:

What to expect

A text or email that addresses you by name.
A text or email that directs you to a CIBC-owned site.
A text or email that provides context on why you’re receiving it.

What we’ll never send you

A text or email that’s unsolicited.
A text or email that is from an unrelated third-party or that directs to a third-party site.
A text or email asking for your banking information, personal information or any passwords.

Interac e-Transfer® Fraud Alert 

There are Interac e-Transfer® branded phishing emails currently in circulation targeting clients of all financial institutions. These emails generally offer refunds from tax authorities or large companies to try and make you select a link and provide personal information. Don’t select any buttons or links directly from the email. We encourage you to be cautious of unexpected payment offers. When in doubt, contact the company or tax authority who sent the funds to confirm that the payment is legitimate or email fraud@cibc.comOpens your email app..

The following is an example of an Interac e-Transfer® branded phishing email:

Sent: Monday, July 10, 2017 6:39 PM
To: [Client]
Subject: INTERAC e-Transfer: [large company or tax authority] sent you money.

Hi [Client Email]

You have received $456.00 (CAD) from [large company or tax authority]

Deposit your money

Expires: July 28, 2017

An example of a Interac e-Transfer® branding phishing email.

Fraudsters can also intercept a real Interac e-Transfer transaction by correctly guessing or obtaining the password. When using Interac e-Transfer, it’s important that the sender provides an accurate email address or mobile phone number and a difficult password. For more tips on protecting your online banking, visit Online Banking Safety Tips.

Online fraud alerts

There are "phishing" emails currently in circulation targeting many financial services’ clients, including CIBC online services clients. CIBC wants to assure our customers that authorities are notified regarding messages targeted at our customers.

As some phishing sites have been known to distribute malicious software, we strongly recommend that you don’t select the links provided in a phishing email as visiting these sites could place your computer at risk. We also recommend that you regularly check your deposit accounts and credit card statements to ensure that all transactions are legitimate.

Below are the recent fraud alerts we’ve received. Select the message subject to review the related message.

Review the fraud alert archive

If you’ve received a suspicious email or text such as the ones above, don’t respond to it and send the email to fraud@cibc.comOpens your email app..

If you have fallen victim to a phishing attack (including an e-Transfer phish), please contact us immediately.

Contact us

If you suspect that you have been a victim of fraud, contact 1-888-872-2422.