Proximus reports a security incident in which an employee of a partner gained unauthorized access to the provider’s customer database “on a large scale.”
An employee of an external partner of Proximus has gained unauthorized access to a database containing customer data, the provider itself confirms in a press release. This concerns basic data such as first and last name, address, e-mail address, date of birth and landline and/or mobile telephone numbers. According to the company, the datasets involved do not contain sensitive information such as SIM card numbers, bank or credit card details, passwords or PIN codes.
“There is currently no evidence that the data involved has been misused in any way. There is no impact on the services that Proximus provides to its customers,” according to the provider.
No details
Proximus has launched an internal investigation to identify the cause and scope of the incident. In accordance with legal obligations, the competent authorities have been informed. Proximus is also filing a complaint with the Federal Prosecutor’s Office.
As long as the investigation is ongoing, the company will not provide further details about the nature of the incident or the circumstances in which the data became accessible. According to Proximus, this is necessary in order not to hinder the investigation.
Call for vigilance
Although no critical or financial data is involved, Proximus calls on customers and the general public to remain alert to possible forms of fraud. The company reiterates that employees will never ask for full bank account numbers, passwords, SIM card numbers, PIN codes or PUK codes via telephone, e-mail or SMS.
read also
Everyday Tasks more Often Cause Data Breaches within Organizations
According to Proximus, caution is advised because basic data can sometimes be used for targeted phishing attempts or social engineering. Customers are advised to view suspicious messages or calls critically and not to simply share personal information.