Sensitive data including names, numbers and tariff plans were accessed.
Orange Belgium has said it discovered a cyber-attack on an IT system which gave unauthorised access to certain data of 850,000 customer accounts.
In a statement, the company said the incident took place at the end of July, but no critical data was compromised: and no passwords, email addresses, banking or financial data were affected.
“However, the hacker has gained access to one of our IT systems which contains the following data: surname, first name, telephone number, SIM card number, PUK code, tariff plan,” it said.
Orange Belgium said that as soon as the incident was discovered, its teams blocked access to the affected system and tightened security measures.
“Orange Belgium has also alerted the competent authorities and filed an official complaint with the judicial authorities,” it said. “The customers concerned have been or will be informed by e-mail and/or text message. We advise them to remain vigilant for suspicious communication.”
The incident follows a
similar incident a few weeks earlier against Orange Group, which “caused disruption to certain management services and platforms for some of our Business customers, as well as a few Consumer services, primarily located in France.”
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
