The tactic employed by tricksters is to send an e-mail in the bank's name, in which they use a pretext (e.g.: technical breakdown, internal enquiry, etc.), to lure their victim to a fake website (normally designed in the bank’s house style colours), where the victim is asked to provide personal data such as: their Internet banking agreement number, password or credit card details, etc.
There is no limit to the ways in which phishers operate to achieve their ends.

How can I protect myself against phishing?

Never send any personal data (Internet banking agreement number, password, credit card details, etc.) in reply to an e-mail.

  • BCEE will never send an e-mail asking its customers to reveal personal data about themselves (Internet banking agreement number, password or credit card details, etc.).
  • BCEE will never send an unsolicited (or unrequested) non-encrypted e-mail containing an executable program to be installed on the customer's PC.
  • The S-net site is authenticated by a digital certificate that has been issued on behalf of BCEE. It is presented every time you log on.

If you think you have been the victim of such an attack – by having sent personal data about yourself to the sender of an e-mail – please block your agreement by selecting "Options - Block Agreement" in S-net and contact us to obtain a new set of security documents.

We strongly advise you never to reveal personal data to a third party and in particular never to install an unsolicited program on your PC.

Do you know Pharming ?

Pharming is an even more insidious type of fraud, that widespreads on the Internet.


Useful links

Information Security Portal of the Luxembourg Government: CASES

Website of the Antiphishing Working Group.