Telecommunications operator SFR has been the subject of a leak of its customer data, including IBANs, the group confirmed to AFP on Friday, September 20, after letters addressed to its subscribers were released.
“On September 3, SFR detected a security incident involving a tool for managing its customers’ orders.”the operator indicated in a standard letter consulted by AFP, and sent to the customers concerned.
According to the letters, the data made accessible covers the “name, first name, contact details provided at the time of ordering (telephone number, email and postal address, delivery address if applicable), contractual data (offer subscribed to, content of the order) as well as the identification number of the terminal and the SIM card (for mobile terminal orders).
The number of customers affected is unknown.
For some customers, the proportion of which SFR has not revealed, this data leak also concerned IBANs.
When asked, the group did not specify the total number of customers affected by this leak, but confirmed that it had affected traditional subscribers as well as subscribers to its offer. “Red by SFR”.
SFR announced that it had filed a complaint with the Public Prosecutor and had notified the National Commission for Information Technology and Civil Liberties (CNIL) of this data breach, a mandatory measure since 2018.
