Phishing - Suspicious emails

Phishing is a fraudulent practice in which criminals pretend to be a reputable, trustworthy or well-known party in order to obtain personal information from the victim, such as credit card and log-in data.

With SNCB phishing, hackers use the identity of SNCB and invite you to fill in a form or click on a link. Via this unlawful method they obtain your personal details and commit identity theft. The phishing can involve:

• Use of the name of SNCB ( both in the e-mail address and in the e-mail)
• Use of the names of directors such as Sophie Dutordoir (CEO),...
• The use of the SNCB logo
• Reference to possible actions of SNCB (strike, free tickets, ...)

NMBS/SNCB will never contact you by email, mail or telephone to ask you for confidential information.

When you receive an email that reasonably appears to originate from NMBS/SNCB, it is critical that you ask yourself a few questions:

• Is the email unexpected, is the message strange?
  Be vigilant if the communication seems to you to be unexpected, irrelevant or the proposition appears unusual or implausible.
• Does the email really come from NMBS/SNCB?
  We send our communications using email addresses ending in @communication.belgianrail.be, @b-rail.be, @belgiantrain.be, @sncb.be or @nmbs.be. Activation emails will be sent from [email protected]. Requests for new passwords will be sent from [email protected].
• Where does the link, which you are being invited to click, lead to?
  Hover your mouse cursor above the link or the button without clicking. Does the domain name (the web site address) correspond with NMBS/SNCB’s?
• Is the web site secure?
  NMBS/SNCB will never ask for your data via a public, insecure page. To ensure that you are navigating to a secure page, check that the start of the url begins with https://... and that the icon displays a locked padlock.

If in doubt, consult the SNCB web site or contact our Customer Service.

• Do not click on the link, consult the NMBS/SNCB web site to check this information.
• Do not accept the link as one of your contacts.
• Do not provide your personal data.
• Contact the SNCB Phishing Team at [email protected] and and include a screenshot of the email in question.
• Mark the email as spam in your mail box

• If it is not a phishing, "coming" from SNCB
  In case it is not a phishing from SNCB, please contact Safeonweb via e-mail or via their website safeonweb.be.
• If it is phishing, "coming" from SNCB
  If it concerns a phishing message from SNCB, send the phishing e-mail via attachment to [email protected]. When you report this phishing e-mail, our Phishing-team can investigate this e-mail and take the necessary actions to stop this phishing campaign.
• How do you forward an e-mail via attachment?
  If you receive an SNCB phishing e-mail, be sure to let us know as soon as possible. You can do this by saving the e-mail in question and sending it as an attachment to your e-mail to [email protected].

• If you have communicated your password, change it immediately.
• If you have communicated your credit card details, notify Cardstop as promptly as possible.
• Contact the SNCB Phishing Team at [email protected] and attach a screenshot of the fraudulent mail.
• If it is possible that your contacts may also have received a fraudulent email, share this information with them.

NMBS/SNCB will not contact you for this purpose at its own initiative. If you would like to take part in a satisfaction survey or apply to become an official customer-tester for NMBS/SNCB, register your interest on the following page sncb/enquetes.

• The surveys are completed on a voluntary basis and are not remunerated.
• The tests and interviews are conducted on our premises covering expenses.

NMBS/SNCB will not contact you for this purpose at its own initiative. The rules for acceptance of compensation payments are very strict. Consult the steps to be taken as part of a compensation claim.