Orange Data Breach Exposes 850,000 Customer Accounts’ Details
Published
- Telecom breach: Telecommunications provider Orange acknowledged an unauthorized third party accessed one company system.
- What was exposed: The security incident impacted sensitive information belonging to approximately 850,000 accounts.
- Ransomware connections: While the company did not attribute this attack to ransomware, hackers recently leaked an alleged Orange sample.
Belgian telecommunications provider Orange has disclosed a significant Orange Belgium data breach affecting approximately 850,000 customer accounts, exposing sensitive subscriber information across the carrier's network infrastructure.
Scope of Compromised Data
The telecom cyberattack, discovered at the end of July 2025, affected “one of its IT systems” and resulted in unauthorized access to multiple categories of personally identifiable information (PII). Compromised details include:
- customer first and last names,
- phone numbers,
- SIM card identifiers,
- PUK codes,
- active tariff plan details.
This core telecommunications subscriber information could facilitate identity theft, SIM swapping attacks, and unauthorized service modifications.
Orange Belgium maintains that "critical data" remained secure during the data breach, specifically excluding passwords, email addresses, and banking information from the compromised dataset.
The telecommunications provider asserts no evidence exists indicating further dissemination of the accessed customer data beyond the initial breach perimeter.
Corporate Response and Mitigation
The Belgian carrier states that the company initiated immediate containment protocols upon discovering the breach, blocking unauthorized access to the affected IT system and contacting impacted customers via email and SMS to ensure transparent disclosure of the breach.
Following incident containment, Orange Belgium implemented enhanced data protection measures across its infrastructure and filed an official complaint with the judicial authorities.
Historical Context and Industry Implications
This incident represents Orange's third significant data security failure since 2014, when it was hacked twice, according to reports, which note that a 2018 breach affected 15,000 customers.
The company recently acknowledged a breach occurred on July 25, which was not confirmed to be the one affecting the Belgium branch, but did not attribute the incident to ransomware.
Yet, a few days ago, the Warlock hacking group claimed a cyberattack targeting Orange, which resulted in a leaked data sample. The same hackers recently claimed to have hit telecommunications company Colt Technology Services.
Orange Group’s website defines the business as a leading telecommunications operator and digital service provider serving 291 million customers (as of December 31, 2024).
The recurring pattern of security incidents highlights persistent vulnerabilities within telecommunications infrastructure, emphasizing the critical need for comprehensive cybersecurity frameworks in carrier environments.
Related
Get expert insights on threats, breaches, scams, and security trends — delivered every Saturday.
Most Popular
Get expert insights on threats, breaches, scams, and security trends — delivered every Saturday.
Most Popular