Belgian Effortel reports cybersecurity breach exposing 70,000 customers
Take action: This is a great example of why test systems and files should not contain real data. Anything can happen, even a simple password breach.
Learn More
Effortel, a mobile virtual network enabler (MVNE) providing technical infrastructure to telecommunications companies is reporting a data breach affecting approximately 70,000 customers across three Belgian mobile virtual network operators (MVNOs). The security incident has exposed personal information of subscribers to
- Carrefour Mobile,
- Neibo mobile service
- Undo mobile service
The breach occurred during testing procedures for the implementation of a new central database system intended to integrate customer data for emergency services. For the integration, Effortel performed tests and generated files with customer data.
These test files containing actual customer information were subsequently compromised when a threat actor successfully penetrated the support portal that connects the MVNOs with Telfort, gaining unauthorized access to the sensitive data. The exposed data includes:
- Names
- Dates of birth
- Email addresses
- Phone numbers
- Residential addresses
- Passport numbers
- Subscriber numbers
- SIM card numbers
- Technical identification data
The nature of the attack was not disclosed, but it's very possible that it's a compromised account.
Effortel has acknowledged the breach and stated that response measures are being implemented. Specific details about these measures have not been disclosed in the available information.
