A cybersecurity expert confirmed on Wednesday that the hacker who previously advertised the data of Free telecom operator customers has now successfully sold it for $175,000 (around 160,000 euros). The data theft, which was claimed in mid-October, was indeed verified by Free. The company began notifying affected customers last Friday, informing them that they had fallen victim to a targeted cyber-attack on a management tool, resulting in unauthorized access to personal data linked to certain subscriber accounts.
The stolen data includes names, first names, email and postal addresses, dates of birth, and International Bank Account Numbers (IBANs) for 5.1 million customers. It is important to note that no passwords or credit card information were compromised in this security breach. While direct withdrawals using stolen IBANs may be difficult due to security measures, there are still potential risks given the sensitive nature of the information.
In response to this data breach, the Observatory for the Security of Payment Means has advised Free customers to regularly monitor and update the list of authorized or prohibited creditors in their online banking space. Additionally, customers can dispute unauthorized charges within 13 months from the date of debit, with a reduced timeframe of 70 days for transactions involving institutions located outside the European Union or the European Economic Area.
Free, when contacted by AFP, chose not to comment on the matter. The hacker who claimed responsibility for the data breach has reportedly sold the stolen data, raising concerns about the potential misuse of the compromised information. Despite the absence of passwords and credit card details in the stolen data set, customers are still urged to remain vigilant and take necessary precautions to protect their personal information.
Given the sensitive nature of the stolen data, affected customers are advised to closely monitor their financial accounts for any suspicious activity and promptly report any unauthorized transactions to their financial institution. While the sale of the stolen data has been confirmed, the full extent of the impact on affected customers remains to be seen.
It is crucial for Free customers to stay informed about the latest developments regarding this data breach and to follow any additional security measures recommended by the company. As cybersecurity threats continue to evolve, maintaining vigilance and taking proactive steps to protect personal data have become increasingly important in safeguarding against potential cyber-attacks.
Serbian 
English 
Albanian 
Croatian