Eurofiber France Reports Data Breach After System Vulnerability Exploited

Eurofiber France said that it identified a data breach last week, in which attackers leveraged a vulnerability to enter its ticket management system and extract information.

 

Eurofiber is a European open digital infrastructure provider offering Ethernet, cloud connectivity, and business internet through its fiber network and data centers in the Netherlands, Belgium, France, and Germany. Its open-network model lets customers choose their preferred service providers and applications.

 

In a data security incident notice published on its website, Eurofiber said that on November 13, it detected a cyber security incident. The breach affects only its French division, including the ticket management platform used by Eurofiber France and its regional brands including Eurafibre, FullSave, Netiwan, Avelia, as well as the ATE customer portal, which supports the Eurofiber Cloud Infra France business.

 

“A software vulnerability of this platform was exploited by a malicious actor, resulting in the exfiltration of data related to these platforms.

 

“This incident is limited to customers of Eurofiber France and the brands mentioned above, as well as to customers using the ATE portal. It does not affect customers using the services of other Eurofiber entities on platforms located in Belgium, Germany or the Netherlands, including Eurofiber Cloud Infra in the Netherlands,” Eurofiber said.

 

Within hours of detecting the breach, Eurofiber secured and patched its ticketing platform and ATE portal, adding extra safeguards to prevent further leaks. The company, working with external cybersecurity experts, is now helping customers manage the incident’s impact.

 

The company said the impact on indirect and wholesale partners in France was limited, as they operate on separate systems. It added that no sensitive information—such as bank details or critical data stored in other systems—was affected. All services remained fully operational throughout the incident and were not disrupted by the attacker.

 

 

 

A threat actor operating under the name “ByteToBreach” has taken credit for the cyberattack on Eurofiber, adding the company to its data-leak site. The group claims to have obtained confidential information belonging to 10,000 businesses and government organizations that are Eurofiber clients.

 

Eurofiber has not yet provided any comment on the threat actor’s claims or on what type of data may have been stolen.