Proximus has identified a security incident related to its customer contact database being consulted on large scale in a non authorised way by one of the collaborators of a Proximus partner.

The data involved concerns first name, last name, address, email address (if available), date of birth and fixed and/or mobile phone number. It is important to emphasize that the data involved do not include SIM card numbers, bank or credit card account details, passwords, PIN or PUK codes, national registry number or communication data.

Proximus wants to stress that at this moment there is no indication that the retrieved data would have been misused in one or other way. There is no impact on the services that Proximus provides to its customers.

Proximus takes all necessary actions to cope with this incident. It has launched an in-depth investigation and is monitoring very closely the possible impact and next steps. Proximus also notifies the competent authorities and is filing a complaint with the Federal Prosecutor’s Office.

At this stage, and while the investigation is ongoing, Proximus cannot give further details on the incident.

While no critical data such as passwords, Sim card number, PIN or PUK code or banking details are involved, Proximus calls on customers and the public to remain highly vigilant. Proximus and its agents will never ask for a full bank account number, password, SIM card number, PIN or PUK code by phone, email or text message.

Frequently Asked Questions (FAQ)

This incident relates customer contact database being consulted at large scale in a non authorised way by one of the collaborators of a Proximus partner. The data involved concerns first name, last name,  address, email address if available, date of birth and fixed and/or mobile phone number.
It does not include SIM card numbers, bank account details, passwords, PIN or PUK codes, national registry number or communication data.

Proximus has launched an investigation to determine the full scope of the incident and to support the competent authorities. While the investigation is ongoing, Proximus cannot give further commentsd on the incident.

In line with our obligations, Proximus has contacted the competent authorities in Belgium, including the Belgian Data Protection Authority and the Centre for Cybersecurity Belgium (CCB), and has filed a complaint with the Federal Prosecutor’s Office.

This is an incident related to certain customer data. There is no impact on the operational business. At this stage we have nothing further to add beyond the statement.

The data involved could be used by fraudsters to contact you by phone, email, or SMS and impersonate Proximus or another company to push you to share sensitive information such as passowrd, SIM code,…

When in doubt, contact the company directly through their official website or phone number. And above all, never share sensitive information such as your password or full bank account number by SMS, phone, or email.

Proximus/Scarlet and their agents will never ask you for your full bank account number, your password, your SIM card number, or your PIN or PUK codes by phone, email, or SMS.

Be cautious of unexpected calls or messages, especially if they try to create a sense of urgency or ask you to “confirm” information. Don’t click on suspicious links or open unexpected attachments.

If in doubt, end the call and contact Proximus/Scarlet through their official channels.

We advise to watch out for:

  • Messages you weren’t expecting, especially ones asking for personal info.
  • Account alerts you didn’t trigger, like a sudden “your information was changed” notification.
  • Anything that feels rushed or urgent, which is a common trick used by scammers.
  • When in doubt, contact the company directly through their official website or phone number.

If you have a specific question related to this incident you can call us on 0800/55.800

You don't have to take any action. You should only remain vigilent for any suspicious activities.

Related News