In a concerning development following the cyberattack on SFR, another major French telecom operator, Free, has fallen victim to a similar breach. The breach, as claimed by a hacker, has resulted in the theft of personal and banking information from millions of Free subscribers. This stolen data is now being offered for sale on the dark web, raising alarms and posing a significant threat to the affected individuals.
The revelation of this data leak came to light when an ethical hacker known as SaxX disclosed the details on Twitter, as reported by Presse-Citron. According to SaxX, the cybercriminal responsible for the breach is attempting to sell over 43 gigabytes of sensitive data, including personal details like names, addresses, email addresses, phone numbers, and Freebox user IDs for millions of Free subscribers.
What adds to the gravity of the situation is the hacker’s claim of obtaining banking details, including IBAN numbers, of over 5.11 million Free customers. This second batch of data is being sold separately and poses a serious risk to those whose information has been compromised. The hacker, although yet to announce a price, is expected to conduct the transaction through an escrow agreement, a method often utilized on the dark web to ensure secure exchanges between the buyer and seller with a third-party intermediary overseeing the deal.
Amidst the uncertainty surrounding the validity of the hacker’s claims, it is crucial for Free customers to take proactive measures to protect themselves. Changing access codes, employing a password manager, and activating two-factor authentication are recommended by SaxX to enhance security for user accounts. These steps are essential regardless of the authenticity of the data breach as they can help mitigate potential threats in the future.
For individuals concerned about falling victim to phishing attacks, vigilance is key. Avoiding suspicious emails or SMS messages containing links and exercising caution with unknown or untrusted contacts are crucial steps in safeguarding personal information. Additionally, affected users should regularly monitor their bank accounts for any unusual transactions or signs of unauthorized activity to promptly detect and mitigate any financial risks.
As of now, Free has not issued any official statement regarding the breach, leaving many customers uncertain about the company’s response to the incident. In the absence of a clear communication from the telecom operator, subscribers are urged to remain vigilant and take the necessary precautions to protect their personal and financial data from further compromise.
This incident serves as a stark reminder of the critical importance of cybersecurity in an increasingly interconnected digital landscape. With hackers targeting telecom operators and posing threats to individuals and companies alike, prioritizing robust security measures and staying proactive in safeguarding sensitive data is paramount to mitigating the risks of malicious cyberattacks.