Eurofiber France Data Breach: Hacker Attempts to Sell Customer Info
▼ Summary
– Eurofiber France experienced a data breach after hackers exploited a vulnerability in its ticket management system and exfiltrated information.
– The incident only affects the company’s French division, including its cloud portal and regional sub-brands, with minimal impact on partners using separate systems.
– The company patched the vulnerability and implemented enhanced security measures but did not specify what data was stolen, only confirming no critical data was affected.
– A threat actor named ‘ByteToBreach’ claimed responsibility, alleging they stole data from 10,000 businesses and government clients, including sensitive files like credentials and source code.
– Eurofiber France has notified French authorities and filed an extortion report, as the threat actor demanded payment to prevent leaking the stolen data.
Eurofiber France has confirmed a significant data breach after hackers infiltrated its ticket management system, exploiting a security flaw to steal customer information. The incident, which affects only the company’s French operations, has prompted immediate security enhancements and vulnerability patching. Eurofiber France, a business-focused digital infrastructure provider and part of the Dutch Eurofiber Group, operates an extensive fiber network spanning several European countries.
According to the company, the breach impacts its cloud division, specifically the ATE portal, along with regional sub-brands such as Eurafibre, FullSave, Netiwan, and Avelia. Indirect sales and wholesale partners in France are expected to experience minimal disruption, as most rely on separate systems. In response to the incident, Eurofiber France placed the affected ticketing platform and ATE portal under heightened security and applied necessary patches. The firm has also implemented additional protective measures to prevent further data exposure and strengthen overall system integrity.
While the company assured stakeholders that banking details and other critical data stored on unrelated systems remained unaffected, it has not disclosed the precise nature of the stolen information. Eurofiber France has committed to notifying all impacted customers individually.
Separately, a threat actor using the alias ‘ByteToBreach’ has claimed responsibility for the attack on a data leak forum. The individual alleges stealing data from approximately 10,000 businesses and government entities, all Eurofiber clients. The hacker claims to possess a range of sensitive files uploaded to the ticketing system, including VPN configurations, login credentials, source code, digital certificates, archives, email account files, and SQL backups.
Eurofiber France has formally reported the incident to the French data protection authority (CNIL) and the national cybersecurity agency, ANSSI. The company also filed an extortion report, indicating that the threat actor demanded payment in exchange for not publicly releasing the stolen data. When approached for further details regarding the allegations, types of data exposed, number of affected customers, or the specific software involved, a Eurofiber France spokesperson declined to comment.
This incident follows other recent cybersecurity challenges within the French telecommunications sector. Last August, Bouygues Telecom experienced a data breach impacting 6.4 million customers. More recently, in July 2025, Orange France disclosed a security incident on its network, though it has not confirmed whether data theft occurred.
(Source: Bleeping Computer)
