DDoS attack cripples HSBC online banking
No customer records compromised, bank says, after second outage of 2016

A cyber attack that has crippled HSBC's website has left customers locked out of online banking services today.
A DDoS (distributed-denial-of-service) attack knocked out HSBC's online functions at around 8.30am this morning, and customers have struggled to access their accounts online since, with HSBC warning at 4.45pm that the assault on its servers is ongoing, though a normal service is returning.
While no customer records or transactions have been compromised, the attack left customers unable to log into online banking facilities via web browsers or mobile apps.
A spokeswoman for HSBC initially told IT Pro that the bank "has successfully defended against the attack" at around 11.20am.
But a statement from COO John Hackett at 4.45pm read: ""We are continuing to experience attempted denial of service attacks and we are closely monitoring the situation with the authorities.
"HSBC's internet and mobile services have partially recovered, and we continue to work to restore a full service. We apologise for the disruption and inconvenience this may have caused."
Today's DDoS attack comes on the final Friday of January, when many people will still be getting paid, and follows two days of outages at the beginning of this month affecting 17 million customers.
Get the ITPro daily newsletter
Sign up today and you will receive a free copy of our Future Focus 2025 report - the leading guidance on AI, cybersecurity and other IT challenges as per 700+ senior executives
Security firm ESET's security specialist, Mark James, said HSBC's reputation will suffer as a result.
"DDoS attacks, regardless of motive, are never good for any organisation," he said. "Its users may vote with their feet rather than be understanding and stay with them."
Tripwire security researcher, Craig Young, speculated that the DDoS assault could be the work of hacktivists - hackers with a moral axe to grind - or cybercriminals looking to force HSBC to cough up in order to put an end to the issue.
"This is a common type of attack used by so-called hacktivists looking to make a political statement as well as extortionists requesting a ransom in exchange for stopping the attack," he said. "Often times the flood of requests are coming from computers and routers which have been hacked and unwillingly enlisted for attack."
HSBC said it is working with police to identify the culprits.
A spokeswoman said: "HSBC is working closely with law enforcement authorities to pursue the criminals responsible for today's attack on our internet banking. We apologise for any inconvenience this incident may have caused."
In addition to the outage at the beginning of January, the bank also angered customers last August by stopping BACS payments from leaving their accounts. HSBC revealed this week in a letter to a committee of MPs that the error was caused by a mega-payment rejected by its system, according to the BBC.
-
RSA Day One: Vibe Is 'All In' on AI for Security
News Artificial intelligence took center stage as RSA looks at how the discussion has moved from generative AI to agentic AI
By Scott Bekker
-
RSAC Conference 2025 live: All the latest news and updates
Live blog Follow all the latest from RSAC Conference 2025 in our live coverage
By Rory Bathgate
-
UK crime fighters wrangle “several thousand” potential cyber criminals in DDoS-for-hire honeypot
News The sting follows a recent crackdown on DDoS-for-hire services globally
By Ross Kelly
-
US begins seizure of 48 DDoS-for-hire services following global investigation
News Six people have been arrested who allegedly oversaw computer attacks launched using booters
By Zach Marzouk
-
Will triple extortion ransomware truly take off?
In-depth Operators are now launching attacks with three extortion layers, but there are limitations to this model
By Connor Jones
-
GoDaddy web hosting review
Reviews GoDaddy web hosting is backed by competitive prices and a beginner-friendly dashboard, and while popular, beware of hidden prices
By Daniel Blechynden
-
Japan investigates potential Russian Killnet cyber attacks
News The hacker group has said it’s revolting against the country’s militarism and that it’s “kicking the samurai”
By Zach Marzouk
-
LockBit hacking group to be 'more aggressive' after falling victim to large-scale DDoS attack
News The ransomware group is currently embroiled in a battle after it leaked data belonging to cyber security company Entrust
By Connor Jones
-
Record for the largest ever HTTPS DDoS attack smashed once again
News The DDoS attack lasted 69 minutes and surpassed the previous record of 26 million RPS
By Praharsha Anand
-
Cloudflare mitigates biggest ever HTTPS DDoS attack
News A botnet generated over 212 million HTTPS requests from over 1,500 networks in 121 countries
By Zach Marzouk