Orange, France’s Leading Telecom Gaint Hit by Cyberattack

France’s leading telecommunications giant Orange confirmed on Monday that it detected a significant cyberattack targeting one of its information systems on Friday, July 25, 2025.

The incident has resulted in widespread service disruptions affecting both corporate customers and consumer services, primarily within France.

The attack prompted immediate action from Orange’s security teams, working in collaboration with Orange Cyberdefense, the company’s specialized cybersecurity division.

Teams were quickly mobilized to isolate potentially affected services and limit the impact of the breach, though these protective measures themselves have caused additional service interruptions.

Service Disruptions and Customer Impact

The cyberattack has led to significant disruptions of certain management services and platforms for Orange’s business customers, along with some consumer services throughout France. The company’s dedicated support teams have been fully deployed to inform and assist affected customers during the ongoing incident.

Orange, which serves more than 290 million customers globally and operates as one of Europe’s largest mobile service providers, acknowledged that the isolation procedures necessary to contain the attack have unfortunately resulted in collateral service disruptions.

The telecommunications operator, ranked as the fourth-largest mobile operator in Europe, has emphasized its commitment to transparency while working to restore normal operations.

Orange’s technical teams have identified solutions that will enable the gradual restoration of the main impacted services under heightened security vigilance.

The company has announced that it expects to reopen the primary affected services by Wednesday morning, July 30, marking nearly a week of disrupted operations since the initial attack.

The operator has filed a formal complaint with authorities and is working closely with law enforcement agencies throughout the investigation process.

At the current stage of the investigation, Orange has stated that there is no evidence suggesting that customer data or internal Orange information has been extracted from the compromised systems.

The timing of this attack comes shortly after Orange Cyberdefense strengthened its European presence, adding 40 additional cybersecurity experts to its team.

This incident adds to a concerning pattern of cyberattacks targeting major telecommunications providers globally. The French telecommunications sector has faced increased scrutiny from cybersecurity agencies, with France’s ANSSI warning about state-sponsored threats targeting the country’s telecommunications infrastructure for espionage purposes.

Orange’s previous cybersecurity incidents, including data breaches affecting its Romanian operations earlier in 2025, demonstrate the persistent threat landscape facing major telecommunications operators.

The company continues to work with relevant authorities and maintains its commitment to protecting customer data and restoring full service capabilities as quickly and safely as possible.

Integrate ANY.RUN TI Lookup with your SIEM or SOAR To Analyses Advanced Threats -> Try 50 Free Trial Searches