La Poste Mobile Suffers Ransomware Attack by LockBit3

La Poste Mobile, a prominent French telecommunications entity, recently fell victim to a ransomware assault orchestrated by the notorious LockBit3 group. This incident was disclosed on their dark web leak site. As a Mobile Virtual Network Operator (MVNO) leveraging SFR's network infrastructure, La Poste Mobile serves over 1.8 million customers with a suite of offerings that include prepaid phone credit, mobile phone plans, and traditional phone packages. Founded in 2011 through a collaboration between the French postal service group La Poste and telecommunications giant SFR, the company has established a significant presence in the sector.

The cyberattack, initiated on July 4, 2022, primarily compromised the company's administrative and management systems. There is a potential risk that customer data was accessed during the breach. In response, La Poste Mobile temporarily shut down its website and mobilized IT teams to assess and mitigate the damage.

LockBit3, the entity behind this cyber onslaught, is recognized for its aggressive ransomware campaigns. The group typically exfiltrates data from its targets before encrypting their databases. Victims are then coerced into paying a ransom to regain access to their data. Failure to comply often results in the stolen data being sold on the dark web, generating profit for the attackers.

In light of the attack, La Poste Mobile has advised its customers to monitor their accounts for any unusual activity and report any discrepancies to the dedicated customer care center. The company also announced a temporary suspension of its website services, pending a thorough investigation.

This incident underscores a growing trend of ransomware attacks targeting the telecommunications industry, emphasizing the critical need for enhanced cybersecurity defenses within this sector.

Sources

• La Poste Mobile - Opérateur de téléphonie mobile
• French telecom company La Poste Mobile struggling to recover from ransomware attack - SecurityWeek
• France Virtual Mobile Operator La Poste Mobile targeted by ransomware attack - BleepingComputer
• Millions affected as ransomware knocks out French telecom firm - CyberScoop
• French Telecoms Firm Hit by Ransomware Attack - IT Security Guru - IT Security Guru