If you have lost your Secure Key or had it stolen, to report it. Even though a thief needs your PIN or Password to use the key, it is a vulnerability.
| Risk | Probability | Mitigation | |------|-------------|-------------| | Biometric false rejection (wet fingers, low light) | Medium | Fallback to device PIN + 3-attempt rule then emergency card | | User resistance to “no physical device” | Medium | 12-month coexistence period + educational videos | | Corporate policy bans personal phones | Low (but real) | Dedicated FIDO2 hardware token (YubiKey 5 Series) issued by employer | | Server-side private key database breach | Very low | HSBC never stores private keys; only public key fingerprints | hsbc replacement secure key exclusive
: Turn on the device (green button), enter a new 4–6 digit PIN, and confirm it on the device. Generate Code If you have lost your Secure Key or