La Poste Mobile: customer data leaked after an embarrassing hack

At the beginning of July 2022, the La Poste Mobile website was forced to temporarily close its doors following a hack. A press release thus replaced the site’s home page for several days. We then learned that the virtual operator had been the victim of a “ransomware”. The message then already indicated that there was... Read More

These Fake World Cup Live Streams Trick Football Fans

VanMoof V: bad news for the sublime electric “hyperbike”

The message then already indicated that there was a risk of leaking customer data and gave a contact address to consult the personal data that may have been stolen: “it is possible that files present in the computers of employees of La Poste Mobile have been affected. Some of them could contain personal data”.

It’s confirmed: La Poste Mobile’s customer data leaked following operator hacking

Our colleagues from Zataz report that unfortunately the fears of the operator were well and truly founded. A 64 MB compressed file containing the personal data of 533,000 customers (including their account number, email address, gender, identity, telephone number, postal address, etc.) is currently circulating on the net.

Zataz takes the opportunity to provide additional information on the hackers behind this data theft. The hacking would be the work of the LockBit group behind a formidable ransomware of the same name. LockBit targets big companies like La Poste Mobile. The modus operandi of hackers works as follows:

First, the hackers seek to seriously disrupt the operations of their target – the La Poste Mobile site thus remained closed / displayed a static page for 10 days after the hack. Then the group attempted to extort funds from the operator.

As La Poste Mobile seems to have refused to pay any ransom to the hackers, the latter then published all the customer data that they managed to steal. As La Poste Mobile already indicated in its press release, the operator’s customers are called upon to be extremely vigilant.

Read also – La Poste Mobile cyberattack – the situation worsens, the site closes

Because of the personal nature of the data circulating on the web, customers risk being targeted by phishing attempts and identity theft. Customers who wish to do so can contact La Poste Mobile directly by telephone (0 970 808 660) and by email (mesdonneespersonnelles@lapostemobile.fr) to “any additional information regarding personal data in connection with this event”.