KPN customers are being targeted by a sophisticated phishing campaign impersonating the Dutch telecommunications provider, warning of a new online payment system called “Wero” replacing iDEAL adn urging immediate direct debit account confirmation. The fraudulent emails, circulating since at least November 13, 2025, attempt to steal banking credentials through a deceptive website mimicking KPN’s official interface.
The scam exploits anxieties surrounding payment security and introduces a fabricated system-Wero-to create a sense of urgency. KPN has confirmed the emails are not legitimate and advises customers not to click any links or provide personal or financial information. This phishing attempt poses a significant risk to KPN’s customer base,potentially leading to financial loss and identity theft if individuals fall victim to the deception.
KPN alerted customers to the phishing scheme via its website and social media channels, emphasizing that the company will never request sensitive banking details via email. The fraudulent message claims a verification deadline of November 14, 2025, to pressure recipients into acting quickly without careful consideration. The email includes a link leading to a fake KPN webpage designed to harvest login credentials and direct debit information.
The phishing email’s subject line reads, “Continue to pay with iDEAL? Then complete your verification no later than November 14, 2025.” The body of the email contains a complex SVG image, likely used to bypass spam filters and appear more legitimate. KPN urges anyone who has clicked the link or provided information to instantly contact their bank and report the incident to KPN’s fraud department.
