We recently became aware (via a sample available on the Darkweb) of a significant collection of data that could affect Belgian WhatsApp users. Around 3.2 million phone numbers and user IDs were compiled and put up for sale on a forum, potentially exposing these users to various cybersecurity risks. This type of data sale is not unique to Belgium and has occurred in other countries in the past.
Potential risks
The main concern with this type of data leak is its potential use in targeted scams, in particular:
- Smishing (SMS phishing): fraudulent text messages designed to deceive recipients.
- Vishing : Fraudulent phone calls designed to extract personal information or money.
These tactics often involve pretending to be legitimate entities in order to gain the trust of unsuspecting people and manipulate them.
Protective measures
- Be sceptical of calls or messages from unknown sources.
- Scrutinise unsolicited communications: Be wary of unexpected contacts, especially those asking for personal or financial information.
- Enable two-factor authentication: Add an extra layer of security to your WhatsApp account. This makes it harder for scammers to access your accounts, even if they have your password.
- Protect your personal information: Avoid sharing sensitive data via WhatsApp, SMS or phone calls.
- Review privacy settings: regularly check and update the privacy settings of your applications and social media accounts to limit the amount of information you share publicly.
You've received such a message and reacted to it. What should you do?
- Contact your bank and/or Card Stop on 078 170 170 if you have transferred money to a fraudster. This way, any fraudulent transactions can be blocked.
- We advise you to make a report to the local police in your place of residence.
Conclusion
Although this data breach is worrying, being informed and cautious can considerably reduce the risks. By implementing these safeguards and remaining vigilant, you can better protect yourself against potential threats.
