Focused guide

SIM Swap Scams in Belgium

Criminals port Belgian mobile numbers to intercept itsme authentication and drain EUR from Belgian bank accounts.

Last reviewed: 1 June 2026

Belgium's itsme digital-identity system is directly linked to mobile numbers, making SIM-swap fraud particularly impactful. Attackers who successfully port a Belgian mobile number can intercept itsme push notifications, enabling them to authorise bank transfers, sign contracts, and access government accounts without further consent.

Belgian carriers (Proximus, Orange, Telenet) have tightened verification procedures following fraud pressure, but social-engineering attacks on staff and digital porting channels remain active threats. CCB and the Belgian banking federation both publish guidance on itsme security.

How this scam works on Belgium

Attackers collect victim data through phishing campaigns or data breaches, then contact a Belgian carrier impersonating the victim and request a SIM replacement. Once the port completes, the victim's phone loses signal.

The attacker immediately receives itsme push notifications and uses them to log into the victim's e-banking, approve EUR transfers, and sign digital contracts. Some attackers also open new credit facilities in the victim's name via itsme-authenticated services.

A secondary scammer may pose as itsme or bank support, contacting the victim to 'resolve the issue' while extracting additional credentials.

Common red flags

Your Belgian phone loses signal unexpectedly
Carrier SMS alerts you to a SIM change you did not request
Unexpected itsme authentication requests arrive without any action on your part
Bank confirms a login or transaction you do not recognise
Carrier confirms a recent SIM swap you do not authorise

How to protect yourself

Add a SIM PIN at your Proximus, Orange, or Telenet store or online portal
Enable itsme activity notifications for all authenticated events
Never approve an itsme push notification you did not personally initiate
Set low daily transfer limits on your Belgian online banking account
Contact your carrier and bank immediately if you lose signal unexpectedly
Report to CCB at safeonweb.be if a SIM swap is confirmed

How to report it

Call your carrier's fraud line immediately for an emergency port-freeze
Contact your bank's 24-hour fraud line
Report to CCB at safeonweb.be and file a complaint at police.be

Frequently asked questions

Can itsme be misused after a SIM swap without further input from me?

Yes. Once an attacker has your SIM, they receive itsme push notifications on their device. Any pending itsme authentication request can be approved without your knowledge. Speed of response to carrier and bank is critical.

How this scam works on Belgium

A secondary scammer may pose as itsme or bank support, contacting the victim to 'resolve the issue' while extracting additional credentials.

Common red flags

Your Belgian phone loses signal unexpectedly

Carrier SMS alerts you to a SIM change you did not request

Unexpected itsme authentication requests arrive without any action on your part

Bank confirms a login or transaction you do not recognise

Carrier confirms a recent SIM swap you do not authorise

How to protect yourself

Add a SIM PIN at your Proximus, Orange, or Telenet store or online portal

Enable itsme activity notifications for all authenticated events

Never approve an itsme push notification you did not personally initiate

Set low daily transfer limits on your Belgian online banking account

Contact your carrier and bank immediately if you lose signal unexpectedly

Report to CCB at safeonweb.be if a SIM swap is confirmed