Ethical Hacking News
Eurofiber has confirmed that it was targeted by a sophisticated cyberattack on November 13, 2025, resulting in the theft of sensitive data and an extortion attempt. The attack exploited a vulnerability in Eurofiber's ticketing system and ATE customer portal, affecting only customers in France and its subsidiaries. Eurofiber is working closely with cybersecurity experts and clients to manage the incident's effects, while reaffirming its commitment to data protection, cybersecurity, and transparency.
Eurofiber, a leading European fiber operator, was targeted by a sophisticated cyberattack on November 13, 2025. The attack exploited a vulnerability in Eurofiber's ticketing system and ATE customer portal, resulting in the theft of sensitive data and an extortion attempt. Fortunately, bank details and critical data in other systems were not affected, and all services remained fully operational. Eurofiber has reaffirmed its commitment to data protection, cybersecurity, and transparency after the incident. The attack highlights the growing threat of sophisticated cyberattacks targeting critical infrastructure operators like Eurofiber. Regular vulnerability assessments and penetration testing are crucial to prevent similar incidents in the future.
Eurofiber, a leading European fiber operator, has confirmed that it was the target of a sophisticated cyberattack on November 13, 2025. The attack, which exploited a vulnerability in the company's ticketing system and ATE customer portal, resulted in the theft of sensitive data and an extortion attempt.
The incident was first reported by Eurofiber itself, with the company issuing a statement confirming that a cybersecurity incident had been detected on November 13, 2025. According to Eurofiber, a software vulnerability in its platform was exploited by malicious actors, resulting in the exfiltration of data related to its platforms. The company immediately secured the affected systems and patched the vulnerability, adding further protections to prevent similar incidents in the future.
The attack did not affect bank details or critical data in other systems, and all services remained fully operational. However, Eurofiber did notify customers when it detected the incident and will continue to update them as the situation evolves, providing regular case-by-case communication.
Eurofiber's focus on B2B digital infrastructure sets it apart from consumer-oriented providers such as Orange and Bouygues. The company's latest annual revenue reached €308M, while Orange made €9.9B in Q3 2025 alone. The breached ticketing platform is used by Eurofiber France and its brands Avelia, Eurafibre, FullSave, and Netiwan, while the ATE portal serves Eurofiber Cloud Infra France.
Interestingly, SOC Rader researchers discovered a post on a cybercrime forum announcing the hack of Eurofiber's GLPI environment. Threat actors also published a sample of the alleged stolen data, which may include sensitive operational materials rather than simple identity data. According to SOC Radar, the attackers used a GLPI SQL injection to pull approximately 10k bcrypt hashes in 10 days, spinning up 20 EU VPS to speed extraction and grab admin keys and files.
The incident has sparked concerns about the potential impact on Eurofiber's customers in France and its subsidiaries. However, Eurofiber emphasizes that the breach affected only customers in France and its subsidiaries, with no impact on clients in Belgium, Germany, or the Netherlands.
In a bid to reassure its customers, Eurofiber has reaffirmed its commitment to data protection, cybersecurity, and transparency. The company's teams are working closely with cybersecurity experts and clients to manage the incident's effects.
The attack highlights the growing threat of sophisticated cyberattacks targeting critical infrastructure operators like Eurofiber. As such, it serves as a reminder for organizations to prioritize their cybersecurity posture and take proactive measures to protect themselves against such threats.
Furthermore, the incident underscores the importance of regular vulnerability assessments and penetration testing. By identifying vulnerabilities in its systems and addressing them promptly, Eurofiber can reduce the risk of similar incidents occurring in the future.
In conclusion, the cyberattack on Eurofiber is a sobering reminder of the ongoing threat landscape facing organizations worldwide. As such, it serves as a call to action for companies to prioritize their cybersecurity posture, invest in robust security measures, and foster a culture of cybersecurity awareness within their organizations.
Related Information:
https://www.ethicalhackingnews.com/articles/A-Cybercrime-Attack-of-Unprecedented-Proportions-Eurofiber-Confirms-November-13-Hack-Data-Theft-and-Extortion-Attempt-ehn.shtml
https://securityaffairs.com/184822/data-breach/eurofiber-confirms-november-13-hack-data-theft-and-extortion-attempt.html
https://www.securityweek.com/data-stolen-in-eurofiber-france-hack/
Published: Wed Nov 19 02:40:09 2025 by llama3.2 3B Q4_K_M
