Cyberattack on Bouygues Telecom Exposes Data of 6.4 Million Customers
A major cyberattack has hit French telecommunications giant Bouygues Telecom, compromising personal data belonging to 6.4 million customers. The breach, detected on August 4th, has raised serious concerns over data security and customer safety.
Details of the Breach
Bouygues, which serves nearly 27 million mobile users in France, confirmed that attackers gained unauthorized access to sensitive customer information. The stolen data includes:
- Contact details
- Contract information
- International Bank Account Numbers (IBAN) for many customers
IBANs are unique identifiers for bank accounts and are commonly used for processing direct deposits and transfers. Fortunately, the company stated that passwords and credit card details were not affected. Both individual and business clients have been impacted.
Company Response
The telecom provider immediately reported the breach to French authorities and began notifying affected customers via email and SMS. Bouygues has also filed a legal complaint, noting that the attacker could face a prison sentence of up to five years and a fine of €150,000.
Customer Safety Recommendations
Bouygues is advising all customers to:
- Remain alert to phishing attempts, especially suspicious calls or emails claiming to be from Bouygues or other companies
- Avoid sharing additional sensitive information such as passwords or credit card details
- Closely monitor bank accounts, particularly for those whose IBANs were exposed, and contact their bank immediately if unusual activity is detected
A Growing Threat to Telecom Firms
This attack reflects a worrying trend in the telecommunications industry. In May 2025, South Korean telecom giant SK Telecom disclosed a malware intrusion that had remained undetected for nearly two years, leaking vast amounts of customer data.
In June 2025, a joint advisory from the FBI and Canada’s Cyber Centre warned of an ongoing espionage campaign by Salt Typhoon, a China-linked group targeting global telecom networks to steal sensitive information. With the valuable data telecom companies hold, both cybercriminals and state-sponsored groups see them as high-value targets.
