A fake email?

What to do with phishing

Internet criminals fish for information via emails. This is called phishing. Some of these phishing emails cannot be distinguished from real ones. Have you received an email that you don't trust? Then there is a real chance that it is a case of phishing. Below you can read how to recognise phishing emails and what you can do if you get one.

How does phishing work?

With phishing emails, internet criminals try and get you to do something. For example, they might ask you to click on a link. If you do that, viruses are placed on your computer. They can also ask you for the login details of, for example, your debit or credit card. In this way, internet criminals gain access to your data.

How can you recognise phishing emails?

We have listed a number of useful tips for you to help you quickly recognise phishing emails:

1. Check the sender address

You can recognise the emails we send to you by the sender address. The last part of the email address always ends with postnl.nl. You can find the sender address in the 'from field' of the email. By clicking the name of the sender, you can see the sender address. Examples of our sender addresses are:

  • noreply@postnl.be
  • info@postnl.be
  • klantenservice@postnl.be
  • extra.home@postnl.be
  • pakketten@postnl.be
If it says something else, then it's possible that it's a phishing email. However, internet criminals are able to falsify a sender address. Therefore, simply checking who the sender is, is never enough.

2. Look critically at emails and web sites

The language of fake emails is improving, but often still contains spelling mistakes and stylistic errors. Usually you will not be addressed personally. Here you can see an example of such a phishing email, dating from August 2016. Phishing mail

3. Don't let them persuade you

Internet criminals try to put pressure on you to take action by giving you a time limit. An example: "Pay by tomorrow, otherwise you will be charged extra!" Many people skim read their emails and therefore find it easy to click on links like these. Be extra alert for these kind of texts and think first before clicking on a link.

4. Check the website address

Internet criminals often hide the link by hiding where it links to. They use a so-called 'deeplink' to take you to a website. That is where a virus is downloaded. Always check the link before you click it. You can do this by hovering your mouse over the word, the sentence or button (without clicking). The link will appear automatically on the screen.

5. Check the login process

Is the login process different to what you're used to? Check the address bar and make sure you are on the correct site. If that is not the case, then don't log in and break the connection immediately.

6. Check you have a secure connection

On MijnPostNL you log in via a secure connection. This means that the address in the address bar starts with https://. Sometimes your browser will also show a padlock indicating that you have a secure connection. In that case, the address line is usually green.

7. Be careful when you share information

Please only enter personal information when you are sure that you are dealing with us.

What to do if you have received a phishing email?

Do you think you might have received a phishing email? Please let us know immediately via info@postnl.be. Include the email as an attachment. In addition, the Belgian National Fraud Hotline is there to answer all your questions about fraud, including phishing, and is also the place where you can report any incidents. You can contact them via their website. The Fraud Hotline does not take action itself, but it will ensure that your report is passed on to the relevant authority. 

You can also report fraud to your local police department.

Did you click on the link?

If you have clicked on the link, we advise you to clean up your computer immediately using an up-to-date.virus scanner. Unfortunately, this is often too late. In that case, you can restore computer to a previous backup version. To do this, ask for expert help.

What are we doing to prevent phishing?

We are doing everything we can to prevent phishing, including tracking down phishing emails and fake websites. We take action even before internet criminals can strike by removing fake sites from the internet. We also automatically block emails that criminals send to you using our sender address, but we can only do this if you have a GMail or Microsoft email address.

Would you like more information?

You can find more information about safely surfing the web and online privacy at https://www.safeonweb.be/nl.

Examples of phishing emails

Example 10 january 2017