• Ask the Community

  • Received a scam sms just after opened a bunq account

Hi

Normally I don’t share my phone number anywhere, but used it to create my bunq account recently. After I opened my account, I received a scam sms from fake belastingdienst that asks to pay an invoice to another bunq account. Therefore I feel that bunq has data leak somehow. Does anyone else had this issue? I expect an explanation from bunq!

Sms content:

[BELASTINGDIENST ALERT]
Uw openstaande schuld van EUR 495,75 met kenmerk: K4512 is na meerdere herinneringen niet voldaan. Op 26 April 2020 zal de gerechtsdeurwaarder overgaan tot conservatoir beslag. U kunt de beslagprocedure voorkomen door direct het gehele bedrag te voldoen via uw betaal link:
(I removed the link)

——-
Regards

    Ik heb precies dezelfde sms gehad, maar ik weet niet of mijn mobiele nummer door bunq is gelekt.

      Hi 👋 @Gozde-Cyan-Leopard#161125

      Usually these scammers send huge batches of these text messages to several phone number ranges. I doubt there is any data leak at bunq but most likely just coincidence they targeted the range that includes your phone number. If there was a (significant) data breach at bunq they would have to inform the users and the relevant authority.

      Don't forget to report the link to the bank as fraudulent that offers the request link, if applicable.

      You may also remove your phone number as an alias from your sub-accounts. Go to the sub-account > Settings > Aliases. This can theoretically be used to verify if someone is a bunq user, if enabled.

        @Gozde-Cyan-Leopard#161125 Ja bekend. Melden bij www.fraudehelpdesk.nl

          @Gozde-Cyan-Leopard#161125 Vanmorgen ook een sms gehad van de belastingdienst, met een bunq rekening waar ik mijn geld heen moest sturen.

            It’s probably because they (the scammers) just send a bunch of phone numbers to Bunq’s APIs and see which ones ask for a password and which ones don’t. They could even use something like SauceLabs or any other app testing system to appear as legitimate traffic.

              Write a Reply...