Large-scale phishing campaigns, both via SMS and email, have been launched using the CNS and CCSS names and logos.
The fraudulent email and SMS messages use the identity and graphic charter of the CCSS/CNS to inform insureds that their social security card has expired.
We would like to point out that these communications do not originate from the CCSS or the CNS, and we warn you not to click on the link provided.
The links take you to web pages that are NOT the CNS or CCSS sites. Do not click on them or provide any information!
The following table will help you distinguish between the genuine website addresses used by the CCSS and the CNS and the falsified addresses used for phishing purposes:
| Institution | Real website addresses >> OK |
Falsified website addresses (phishing) >> STOP |
|---|---|---|
| CCSS | http://ccss-public.com http://ccss-lu.com |
|
| CNS | http://cns-public.com http://cns-lu.com http://cns-public.eu |
For victims of such a phishing attack, we recommend to:
- contact your financial institution (your bank)
and
- consult the police website on phishing to find out what to do next:
https://police.public.lu/en/prevention/dangers-sur-internet/phishing.html