Excerpt from CyberInsider Article, Published on August 21, 2025
Orange, one of Belgium’s leading telecom giants, has officially disclosed a recent data breach that has affected approximately 850,000 customers. The Orange security team discovered unauthorized access to a core IT system at the end of July 2025. Fortunately, passwords, email addresses, and banking information were not compromised in this Orange data breach. However, personal details like names, phone numbers, SIM card numbers, PUK codes, and tariff plans were exposed, raising concerns about possible social engineering or SIM swap attempts.
Swiftly after discovering the intrusion, Orange’s internal security team took decisive action. They blocked access to the compromised system, reported the incident to regulatory and legal bodies, and immediately reinforced their security protocols. Affected customers are being contacted directly through SMS and email. The company has also set up a dedicated support line and an updated FAQ page to guide customers about steps they can take to protect their accounts.
The breach comes as part of a troubling trend for European telecoms. Notably, Orange France and Bouygues Telecom both experienced recent cyber incidents, with Bouygues exposing over 6 million customer records and Orange France’s breach disrupting business services. This close timing has raised industry concerns about a possible coordinated cyberattack campaign targeting key telecom providers across Europe.
Despite the breach, Orange assures customers that all lines remain operational. The impacted metadata – while not classified as highly sensitive – could potentially be used for phishing scams or attempts at SIM fraud. To counter these risks, Orange has implemented strengthened identity verification and introduced security questions not reliant on the breached data. Customers are urged to be cautious of any suspicious communications claiming to represent Orange or related services, and to report such messages immediately.
To delve deeper into this topic, visit the CyberInsider Article.
