Posted on by

More than 5 million IBAN numbers and 19 million customer accounts were compromised

More than 5 million IBAN numbers and 19 million customer accounts were compromised

A breakthrough that could have unprecedented proportions! During the night, a hacker is said to have offered the personal data of almost all Free customers for sale. The leak has not yet been confirmed and even if it is a false alarm, caution is still advised.

© Saxx/Twitter

The 43.6GB file is available for sale on the Amazon Dark Web SaxX Ethical Hacker Alerts on This covers the personal data of more than 19 million Free Mobile and Freebox customers. The second file contains the IBAN numbers of more than 5 million customers. A fact that is not for nothing reminiscent of the serial hacks to which SFR recently fell victim.

This content was blocked because you did not accept cookies and other tracking devices. This content is provided by Twitter.
To view it, you must consent to Twitter’s use of your information, which may be used for the following purposes: to allow you to view and share content on social media and to develop and improve Humanoid’s products and its accessories support financially. Partners show you personalized advertising based on your profile and activity, define a personalized advertising profile, measure the performance of ads and content on this website, and measure the audience of this website (more information)

By clicking “I Accept All”, you agree to the above purposes of all cookies and other tracking tools placed by Humanoid and its partners.

You can revoke your consent at any time. For more information, we invite you to read our Cookie Policy.

Manage my decisions

Also read:
50,000 SFR client files distributed across the Internet by French hackers!

The leak has not yet been confirmed by Free

As usual, this file for sale contains some sensitive personal data of Xavier Niel Atelier customers. In addition to last names, first names, telephone and email details, other sensitive information such as postal address, Freebox ID or even bank details are also displayed there.

However, SaxX cautions that this so-called hack should be treated with caution. The leak has not yet been confirmed by Free. For now, all we know is that the hack took place on October 17th and the seller intends to transfer the files across the system all at onceguaranteeAn electronic intermediation system that guarantees the transaction of funds and data!

Last year, a hacker claimed to have compromised the data of 14 million customers, which Free strenuously denied. Therefore, it could also be an attempt to either buy out the operator or defraud potential buyers.

This leak comes in a context where hacking operations are increasing. Both between operators and in our public services (Pôle Emploi, CAF, France Connect, etc.). Let’s also remember that Free is not an example of cybersecurity. At the end of 2022, the CNIL condemned the operator Iliad Group for failing to protect personal data.

Also read:
Free Mobile: A ridiculous fine for violating personal data protection

What should we do if we are affected by this leak?

If you are a free customer and have doubts, don’t wait for an answer! Here are the steps you need to take if your data is likely to be published on the dark web. These responses should be adopted for both individuals and companies:

  • Update all your systems : Operating system updates for your devices close security gaps. If possible, this should definitely be done on your smartphone, tablet and computer.
  • Use a password manager One of the most common mistakes is using the same password for all your accounts. The password manager allows you to create and store quite complex passwords for each account.
  • Enable two-factor authentication (2FA). : It is an additional layer of security that comes in the form of a second step of simple, quick authentication via email or SMS.
  • Be alert at all times : There are a few small reactions that should be implemented automatically: never click on a suspicious link in an email or SMS, check suspicious messages in mailboxes and social networks, and take a daily look at your bank account to make sure that there are no suspicious transactions. that it And the most important thing After a leak of this type, as malicious people can use the data generated by the leak to impersonate your operator.

Also read:
How do you secure your smartphone, tablet or PC? The Ultimate Guide!