Security
French Regulators Slap Free Mobile with €42 Million Fine for 2024 Data Breach
France Fines Free Mobile €42 Million for 2024 Data Breach
The French data protection authority, CNIL, has levied fines totaling €42 million on Free Mobile and its parent company, Free, for failing to adequately safeguard customer data from cyber threats.
Free Mobile, the second-largest internet service provider in France, fell victim to a data breach in October 2024, compromising the personal information of nearly 23 million mobile and fixed subscribers.
The breach targeted the company’s management tool, with hackers stealing sensitive customer data to sell on a hacker forum. The perpetrators, using the alias ‘drussellx’, claimed that the attack affected 19.2 million customers and included IBANs for approximately 25% of those individuals.
Following an investigation, CNIL determined that despite Free’s efforts to enhance cybersecurity post-breach, their prior negligence breached several GDPR regulations.
“CNIL’s inspection, prompted by over 2,500 complaints from affected individuals, revealed numerous GDPR violations by Free Mobile and Free,” the French agency stated.
The violations identified were:
- Failure to ensure data security (Article 32 GDPR) – Inadequate security measures, including weak VPN authentication and ineffective abnormal activity detection, facilitated the breach.
- Failure to notify affected individuals adequately (Article 34 GDPR) – Notifications lacked detail on breach consequences and mitigation steps.
- Excessive retention of personal data (Article 5(1)(e) GDPR) – Free Mobile retained former subscribers’ data longer than necessary, failing to delete it in a timely manner.
CNIL mandated both companies to finalize their enhanced security measures within three months and instructed Free Mobile to remove excess customer data within six months.
Subsequent to the Free Mobile breach, France witnessed additional data breaches impacting major telecommunication providers.
In July 2025, Orange France reported a breach causing operational disruptions, while Bouygues Telecom suffered a breach exposing sensitive data of 6.4 million customers a month later.
As MCP (Model Context Protocol) gains traction for LLM connectivity, security teams are prioritizing safeguarding new services. Download our free cheat sheet detailing 7 best practices for immediate use.
Brands Chatting with ChatGPT: The Future of Advertising
Virtual Visions: Dive into the Atmospheric World of Replaced with the Exciting Demo!
Modal Labs Rumored to Secure $2.5B Valuation in Funding Talks
Uncovering the Dark Side of Gemini AI: How Hackers are Exploiting it for Cyber Attacks
Seamlessly Transitioning: How iOS 26.3 Simplifies the Switch to Android
Legal Battle: Autodesk vs. Google’s Flow AI Videomaker Trademark
Revolutionizing Your Drive: The Latest CarPlay Innovations
Samsung S22 Ultra vs S21 / iPhone 13 Pro Max / Pixel 6 Pro / Xiaomi 12 Pro Battery Life Drain Test!
BMW Issues Global Recall for 575,000 Vehicles Due to Starter Fire Hazard
EU Takes Action Against Instagram and Facebook for Violating Illegal Content Rules
Warning: Facebook Creators Face Monetization Loss for Stealing and Reposting Videos
Facebook Compliance: ICE-tracking Page Removed After US Government Intervention
InstaDub: Meta’s AI Translation Tool for Instagram Videos
Facebook’s New Look: A Blend of Instagram’s Style
Facebook and Instagram to Reduce Personalized Ads for European Users
Reclaim Your Account: Facebook and Instagram Launch New Hub for Account Recovery
Meta discontinues Messenger apps for Windows and macOS
Breaking Updates: Meta Connect 2025 Unveils Latest Developments
Samsung S22 Ultra vs S21 / iPhone 13 Pro Max / Pixel 6 Pro / Xiaomi 12 Pro Battery Life Drain Test!
I tested the BULLETPROOF iPhone.
POCO X4 Pro Review – $250 iPhone Destroyer?
10 Million!
17 WILDEST Inventions you won’t believe are REAL.
Apple’s 2022 products are even CRAZIER than you think.
I tested the CHEAPEST Gadgets on the Internet.
I bought the THINNEST Tech in the world.
The Samsung Smartphone Scandal: Explained
-
Facebook4 months agoEU Takes Action Against Instagram and Facebook for Violating Illegal Content Rules
-
Facebook4 months agoWarning: Facebook Creators Face Monetization Loss for Stealing and Reposting Videos
-
Facebook4 months agoFacebook Compliance: ICE-tracking Page Removed After US Government Intervention
-
Facebook4 months agoInstaDub: Meta’s AI Translation Tool for Instagram Videos
-
Facebook2 months agoFacebook’s New Look: A Blend of Instagram’s Style
-
Facebook2 months agoFacebook and Instagram to Reduce Personalized Ads for European Users
-
Facebook2 months agoReclaim Your Account: Facebook and Instagram Launch New Hub for Account Recovery
-
Apple4 months agoMeta discontinues Messenger apps for Windows and macOS
