- Orange notifies users of a data violation
- A threat actor stole names, E -emails and more of 850,000 people
- A study is in progress
Orange Belgium has confirmed to suffer a cyber attack in which the striker stole sensitive data about hundreds of thousands of users.
In a press release published on the company’s website, Orange Belgium confirmed the violation and said it discovered the penetration at the end of July 2025. After releasing attackers, tightening the controls, informing law enforcement and launching a study, determined orange that attackers managed to exfilter data on 850,000 of his clients.
The data includes full names, phone numbers, SIM card numbers, PUK codes and customs plans. Passwords, E -mail addresses or financial information were not accessed, it was said. Affected persons were apparently notified either via E -mail or SMS.
No typhoons
Orange did not discuss who the threat actors were or whether this was a ransomware attack or a simple data mash-and-grab.
In a statement, the company said the attack was not linked to the Chinese ‘Typhoon’ opponents who have targeted telecommunications providers in the West for some time.
It also said it knows who the attacker is, but as the investigation is currently ongoing, it cannot share it with the public.
A subsidiary of the global telecommunications Behemoth, Orange Belgium is an important telecommunications provider in the country serving approx. 3.5 million post-paid mobile subscribers and about one million cable subscribers.
The parent company is also often targeted by different cyber criminals.
At the end of February 2025, a member of the Hellcat Ransomware organization, alias Rey, held access to a “non-critical application” belonging to Orange Romania, after gaining access by utilizing compromised credentials and shortcomings in Jira.
Less than a month later, the same subsidiary suffered another violation, and in January, Orange Spain suffered a “big outbreak” after a threat actor passed by the alias “snow” obtained a “ridiculously weak” password to an account that manages the global routing table and controls the networks providing the company’s internet traffic.
Via Bleeping computer
