Bouygues Telecom Confirms Data Breach Impacting 6.4 Million Customers

Bouygues Telecom, one of the largest telecommunication service providers in France, has confirmed a data breach that exposed the personal information of 6.4 million customers.

The company, which operates mobile, internet, and IPTV services, warned that the cyberattack occurred on Sunday, August 4, 2025, after unauthorized access to certain personal data from customer accounts was gained. The breach has raised concerns among customers, who are now at risk of fraud and phishing attacks.

Bouygues Telecom emphasized that there has been no impact observed on customer services or networks, but the company's technical teams quickly resolved the situation and implemented additional security measures to prevent future breaches.

The French National Cybersecurity Agency (ANSSI) and the CNIL (French data protection authority) have been informed of the breach, with the perpetrator facing up to 5 years of imprisonment and a €150,000 fine for their actions. The company has also urged its customers not to give away sensitive information like login credentials to people calling them or claiming to be from Bouygues Telecom.

The stolen customer information included IBANs, but it is essential to note that credit card numbers and Bouygues Telecom account passwords were not compromised. Customers are being informed directly via SMS and email about the breach and are advised to regularly check their debits and contact their bank immediately if they notice suspicious activity.

These incidents targeting European telecom providers echo similar attacks against U.S.-based telcos, attributed to Chinese cyber-espionage agents of the Salt Typhoon hacking group. BleepingComputer contacted Bouygues Telecom for further information about the attack, but this response was not received in time for this article.

The breach is the latest in a series of high-profile attacks on European telecom providers, with another French telecommunications giant, Orange, disclosing a similar network breach that occurred on July 25, 2025. Investigations into whether customer data was stolen are still ongoing, and the company has not published an update on this incident.

Similar breaches have been reported in other countries, including the U.S., where telcos have fallen victim to attacks attributed to Chinese cyber-espionage agents. The rise of sophisticated hacking groups like the Salt Typhoon highlights the need for robust cybersecurity measures and increased awareness among consumers about online threats.

Key Facts About the Breach

• 6.4 million customer accounts were affected by the breach.
• No credit card numbers or Bouygues Telecom account passwords were compromised.
• The breach occurred on Sunday, August 4, 2025.
• Bouygues Telecom has implemented additional security measures to prevent future breaches.
• Customers are being informed directly via SMS and email about the breach.

What You Can Do

To protect yourself from online threats, follow these tips:

• Regularly check your bank statements for suspicious activity.
• Contact your bank immediately if you notice any unusual transactions.
• Be cautious of phone calls or emails claiming to be from Bouygues Telecom.
• Never give away sensitive information like login credentials to people calling you or claiming to be from the company.

Stay informed about cybersecurity threats and best practices by following reputable sources and staying vigilant online. Remember, it's always better to err on the side of caution when it comes to your personal data and online security.