Has SFR been the victim of a hack? A hacker has put 1.4 million customer data on sale on a famous hacking forum. Even if the information has not yet been confirmed by the operator, vigilance is required!

Has SFR been the victim of a hack? A hacker has put 1.4 million customer data on sale on a famous hacking forum. Even if the information has not yet been confirmed by the operator, vigilance is required!

Like all Internet operators, SFR is an attractive target for cybercriminals, due to the colossal amount of personal information that the ISP has on its many subscribers. So, when it comes to hacking, panic quickly sets in! It turns out that ethical hacker Clément Domingo, aka SaxX, spotted an ad on a famous hacker forum, which he describes as‘““Amazon of cybercrime”. A cybercriminal, answering to the sweet name of “Kev Adams”, put up for sale a database containing 1,445,683 lines of personal information of SFR customers. This was reportedly recovered on June 7, 2024. However, SFR has not made any official statement on this subject.

SFR hacking: what are the risks for the operator’s customers?

The hacker in question is said to be a woman, who is said to be acting from Nigeria and has a particular interest in France databases. He did not indicate the purchase price for SFR’s database, leaving it to the main interested parties to make an offer, but specified that he would accept Litecoin (LTC), a derivative of Bitcoin, and Monero (XMR), another cryptocurrency. The stolen data would concern the name, first name, postal address, telephone number, date of birth and geographical coordinates (latitude and longitude) of SFR customers. Email addresses, passwords and bank details would therefore not have been affected.

Even if the data collected is not particularly sensitive, if the leak is real, we should expect phishing campaigns in the coming weeks. Indeed, when they get their hands on databases, scammers use personal information to adapt their traps and make their messages more credible, including by pretending to be your operator – in this case, SFR. In short, if you are a subscriber of the operator, be extra vigilant in the coming weeks and as always, do not respond hastily to emails, text messages, calls, and even registered letters from which you do not know the sender or which seem suspicious to you. Take the time to verify the identity of the person you are speaking to before doing anything!