Several cases of attempted fraud targeting small businesses and the self-employed have been reported to Safeonweb in recent days.
A so-called official from the ‘SPF cybersecurity’ contacts companies as part of an Internet security awareness campaign. The impostor then offers a so-called on-site audit to assess the security of the companies.
This service is free of charge and the so-called civil servant will bring his equipment to connect to your network. He will then refer you to a website to confirm that everything is in order.
Be wary, this is a scam. Do not agree to an appointment with the so-called civil servant.
What should you look out for?
- The ‘SPF Cybersécurité’ or ‘Service fédéral cybercriminalité’ does not exist. The organisation that coordinates cybersecurity in Belgium is the Centre for Cybersecurity Belgium (CCB). The CCB carries out company audits according to a specific legal framework and for which a reason is required. Any telephone contact will be confirmed by an official letter stating the reason for the audit.
- The imposter will be particularly insistent in trying to arrange a meeting.
What should you do?
- If in doubt, do not agree to any meeting and report the scam to info@safeonweb.be.
- Verify the identity of the person you are dealing with. Contact the institution concerned directly via its official website or switchboard.
- Don't be fooled by appearances: a scammer may use a fake email or a fake badge/business card to impersonate a federal agent.
- Check the email address: a federal institution will use an official domain (e.g. @belgium.be).