Skip to content
Data breachContained

Leak at Altitude Infra

Altitude Infra, a major French independent fiber-optic infrastructure operator, had ~5.76 GB (52 files) stolen from a partner extranet and offered for sale online, exposing network documentation, ISP-partner files and end-customer eligibility data across its 3M+ connected locations.

Victim
Altitude Infra

On 22 December 2025, Altitude Infra β€” one of France's largest independent fiber-optic infrastructure (FttH) operators β€” was reported to have suffered a data theft after a threat actor put a package of its internal files up for sale on a cybercrime forum. The intrusion was traced to an extranet used to exchange data with the company's operator clients, which was accessed without authorization around the start of December 2025.

The stolen set comprised 52 files across two folders, totalling roughly 5.76 GB, advertised for about $2,000 with an automated sales bot. Rather than a classic customer database, much of the material was sensitive technical documentation describing the physical layout of French fiber networks, alongside end-customer eligibility lists containing address-level personal data.

Exposed data categories included:

  • Network infrastructure documentation (GIS maps, optical-cabinet schematics, node identifiers, fiber-routing files)
  • ISP partner files and operational/configuration data
  • Regional coverage data spanning numerous French departments
  • End-customer prospect identities (names, postal addresses, phone numbers, fiber eligibility)
  • Support tickets

Altitude Infra serves more than 3 million residential and business locations and works with major ISPs including Orange, Free, Bouygues Telecom and SFR. The company secured the compromised access, reported the incident to France's data-protection authority (CNIL) under the GDPR, notified the national cybersecurity agency (ANSSI), filed a criminal complaint, and worked with its operator clients to assess the impact.

Sources

  1. botcrawl.comhttps://botcrawl.com/altitude-infra-data-breach-exposes-5-76-gb-of-french-fiber-infrastructure-files/
  2. funinformatique.comhttps://www.funinformatique.com/fuite_de_donnees/altitude-infra/

Related incidents

Data breachContained

Leak at Red by SFR

In December 2025, French telecom operator SFR disclosed a data breach affecting Red by SFR customers, exposing names, postal and email addresses, phone numbers and customer reference numbers after an internal fiber-connection management tool was compromised.

Victim
Red by SFR
Data breachContained

Leak at Eurofiber

In November 2025, Dutch fibre-network operator Eurofiber's French unit was breached via an SQL-injection flaw in its outdated GLPI ticketing system, exposing technical and credential data tied to more than 3,600 customer organisations, including major firms and public bodies.

Victim
Eurofiber
Data breachUnknown

Data leak at Syma Mobile

In September 2025, a database of 117,963 Syma Mobile customers β€” exposing names, dates of birth, postal and email addresses, phone numbers and ID-document details β€” was put up for sale on a dark-web forum alongside other French datasets.

Victim
Syma Mobile
Records
118.0K
Data breachContained

Leak at Bouygues Telecom

On 6 August 2025, French telecom operator Bouygues Telecom disclosed a cyberattack that exposed personal data of 6.4 million customer accounts, including contact details, contractual data, civil status and IBANs (no card numbers or passwords).

Victim
Bouygues Telecom
Records
6.4M