Prevention
& security

How can we help you?

Are you a victim of fraud?

Fraud alert

Fraud may take the form of attempted phishing, vishing (voice phishing) or spoofing (identity theft).

Fraudsters have no scruples in impersonating BIL staff or employees of legitimate institutions (after stealing the telephone number of the bank or institution) to harvest data/login details and misuse them for fraudulent purposes.

Remember that BIL will never ask you for your data/login details.

BIL employees will never ask a courier to come and collect bank cards from your home.

Alert: e-mail fraud attempts underway!

Be vigilant, fraudsters are trying to pass themselves off as BIL by sending you an e-mail inviting you to click on a fake BILnet link. Do not share any personal information and do not click on this link.

BIL will NEVER ask you by text message, e-mail or telephone for your LuxTrust login and password (used in BILnet), or for your bank card number or secret code.

Protect yourself from fraud when online shopping.

Secure Your Cards:

Never save your banking information on commercial websites.
In-store, enter your codes discreetly and avoid distractions.
Keep your code separate from your card.

Beware of Online Scams:

Stay away from offers that seem too good to be true!
Take the time to check user reviews.
React with caution: if an offer seems urgent, it’s often a scam.
Verify if the merchant site is the official brand site and not a look-alike.

Stay vigilant and make safe purchases!

Be careful when shopping on the web!

Be extra vigilant when faced with tempting offers on the Internet. Take the time to find out all you can about the seller and read their reviews before making any payment.

Stay one step ahead of the fraudsters: learn good habits!

In the digital era, fraudsters are becoming increasingly creative, from fake online quiz games to phishing attempts.

Scammers will use any means available, including phone, post, email or the internet. Their scamming techniques are constantly changing and are ever more sophisticated.

Although we are doing everything in our power to ensure optimum security, it is vital that you learn good habits to protect yourself.

The different types of fraud Good habits

Remember

BIL will NEVER ask you,
by SMS, email or phone:

For your LuxTrust login details and passwords (used in BILnet).

For your bank card PIN.

To confirm supposed "cancellations" of fraudulent transactions.

BIL will never send a courier to collect your cards and PINs.

The six good habits you should adopt

Beware of fake calls that seem to come from BIL!

Scammers may copy our number to steal your sensitive data.
Be sceptical if anyone asks you for sensitive information (usernames, passwords, card details, etc.).
Hang up and try to call the person back on the official number.

Don't click on suspicious hyperlinks received by SMS or email!

You should also be suspicious of QR codes that could redirect you to a fake login page in order to harvest login details and/or passwords.

Also check the sender and do not authorise any downloads.
Never click on hyperlinks or QR codes received by SMS or email. Don’t download the attachments either.

Never share your login details or PINs!

Check the security and confidentiality of your access and PINs.
Never leave your login details lying around. Do not disclose your LuxTrust, BILnet or bank card PINs to third parties.
Never share your personal data with anyone else. Your bank will never ask you for this information!

Never download software remotely!

Never allow software to be installed remotely on your computer or smartphone when asked by someone you don't know (e.g. fraud via fake tech support).

Be wary when you are asked to make a credit transfer to a new beneficiary!

Take the time to check everything when making a credit transfer.
Check that the country and beneficiary account on the invoice or of the recipient are credible (e.g. the company and its bank are in the same country). Don't hesitate to contact the issuer of the invoice (on their official telephone number) to check that the beneficiary account is in fact correct (especially if you have recently received a notification informing you of a change in the account to be credited).

Stay alert!

Be vigilant if someone forces you to take action quickly!

This is one of the many tactics used by fraudsters to achieve their ends.

At the ATM: Shield your PIN and don’t let yourself be distracted.

How to protect yourself from ATM scams?

Never share your PIN – keep it strictly confidential.
Cover your PIN when entering it.
Use indoor ATMs – they are less likely to be tampered with.
Stay focused – don’t let anyone distract you
Withdraw cash during weekdays – bank staff can assist if needed.
If your card is retained, block it immediately by calling (+352) 49 10 10 or via BILnet.

The different types of fraud

By phone - Vishing

Vishing (voice phishing) is the practice of stealing personal information by phone.

You might receive a call from someone pretending to be a BIL employee, who will tell you that a case of fraud has been identified.
The person will enlist your help to install an application that enables them to take control of your PC in order to fix the (fake) problem or confirm supposed "cancellations" of fraudulent transactions.

By SMS or email - Smishing & Phishing

Phishing (by email) is the practice of sending an email or SMS (smishing) with the intent of stealing personal information.

The fraudster will send you a message that looks as if it comes from a trustworthy body such as a bank, telephone provider, social security organisation, the postal service, etc.
You are asked to click on a link that redirects you to a fraudulent site (that looks like the original) where you will enter your data.

By QR code - Quishing

Quishing, or phishing by QR code, is the practice of fraudsters using QR codes to redirect victims to malicious websites to prompt them to download harmful content, or to redirect them to a fake login page in order to harvest login details and/or passwords.

Bank card based

In the event of fraud, immediately block the compromised cards, either directly using the BILnet app (see our card blocking tutorial), or through Worldline by calling (+352) 49 10 10.

Report the fraudulent transactions as quickly and with as much detail as possible to Worldline on (+352) 49 10 10.

Credit transfer based

A credit transfer scam (or fake supplier scam) is the practice of deceiving the victim by pretending to be a genuine creditor (e.g. a supplier, notary, lawyer or property owner).

The scammer's aim is to redirect a credit transfer to a bank account that they control.
Check for any pending transactions that you didn't initiate, and your standing orders or the list of your usual beneficiaries, to make sure that nothing has been set up without your knowledge.
In case of doubt, block your LuxTrust certificate: directly with LuxTrust, or through your bank. You can either temporarily suspend it or permanently block it.

Investment based

Investment fraud consists of offering a financial investment that guarantees extremely lucrative returns. You may be taken in by advertising on social media or via email and visit commercial sites that look very real and professional but are in fact fakes. They may be cryptocurrency exchanges, trading sites etc.

Don’t be taken in by offers that are too good to be true, as they are probably fake!

Entify theft (spoofing) by phone - Spoofing

Phone spoofing: this is a technique used by fraudsters consisting of displaying the real telephone number of a known institution, such as BIL.

The goal is to conceal the fraudster's real number and above all inspire trust in the person called. The client believes that they recognise their bank's number, which is in fact identical, or the number of the known institution, and feels that they can trust the caller.

Fake BIL websites

Do not use Google (or any other search engine) for BILnet: the results that search engines offer may send you to a fraudulent website designed to scam you.

To avoid any problems:

It is better to use your BILnet app, which is secure.
Ou enter https://www.bil.com in your address bar manually.
Or save the address https://www.bil.com/BILnet/ in your favourites.

Always check that the connection is secure and the destination URL is correct.

Theft by trickery at an ATM

Card Trapping:

Fraudsters insert a device into the card slot to trap your card. While you try to retrieve it, they observe your PIN. Once you leave, they retrieve the card and use it, along with your secret PIN code, for fraudulent transactions.

Cash Trapping:

A device is placed in the cash dispenser slot to trap the banknotes. You think the ATM didn’t dispense any money and walk away – the fraudsters then retrieve the trapped cash.

Distraction Scam:

While you enter your PIN, a fraudster watches over your shoulder. Then they distract you (e.g., by asking a question or dropping something), steal your card, and disappear.