Free subscribers have started receiving notifications about a recent cyberattack targeting the operator. In an email, Free specifies that the incident led to unauthorized access to some users' personal data, including their titles, first names, postal addresses, and emails, as well as contractual information. However, user passwords were not compromised, an assurance that provides some respite to customers from this breach.
Actions taken by Free to secure systems
Following this attack, Free Company indicated that it immediately took the necessary measures to enhance the security of its information systems and thus protect the data of its subscribers. The operator also reported the incident to the National Commission for Information Technologies and Liberties (CNIL) and the National Agency for the Security of Information Systems (ANSSI), which monitor personal data protection and cybersecurity in France. A criminal complaint was also submitted to the Public Prosecution, which confirms the seriousness of this assault.
Increase vigilance against the risks of phishing and fraud
Free urges its subscribers to be vigilant in the face of the increased risks of phishing and other fraudulent attempts that may result from this data leak. The operator insists in its letter that its consultants will never ask for sensitive information such as passwords by phone or email. In case of any doubt, subscribers are advised to consult the website Cybermalveillance.gouv.fr, which provides official support to victims of online fraud.
There are no direct risks to subscribers' bank accounts
Free also reassures its subscribers by specifying that potential IBAN disclosure does not involve direct bank debit risks. Banking institutions require verifiable prior authorization prior to any transaction. In case of doubt, users can consult their bank's customer area to check the status of active authorizations.
Toll free number and support
To answer subscribers' questions, Free provides a toll-free number, which can be reached daily from 9 a.m. to 6 p.m. This service allows customers to obtain information and clarify the additional security measures in place. Finally, the operator apologizes for this breach of data confidentiality, stressing its intention to further strengthen the protection of personal information.