La Poste Mobile Hit by LockBit 3.0 Ransomware

French mobile phone network La Poste Mobile hit by a ransomware attack that has crippled its administrative and management services.

The company’s website is down, at the time of writing with a lengthy message to customers explaining that the ransomware attack began on July 4. While service has not been affected, the company noted that customer data may have been accessed.

The company urged customers to be wary of phishing messages or attempts at identity theft. Officials said customer service email addresses and phone numbers are still functioning.

As soon as we became aware of this incident, we took the necessary protective measures by immediately suspending the computer systems concerned. This protective action has led us to temporarily close our website and our customer area. Our IT teams are currently diagnosing the situation. Our first analyses establish that our servers essential to the operation of your mobile line have been well protected. On the other hand, it is possible that files present in the computers of La Poste Mobile employees have been affected. Some of them may contain personal data.

La Poste statements.

La Poste Mobile has more than 1.8 million customers and was founded in 2011, is a Mobile Virtual Network Operator, which are telecommunication providers that don’t own a network. It operates using SFR’s network. They offer a variety of services including prepaid phone credit, mobile phone plans and conventional phone packages.

LockBit ransomware group added the company to its list of victims. Two weeks ago, the ransomware gang introduced a revamped version of its tools, calling it “LockBit 3.0.” A most prolific ransomware group in terms of publicly identified victims.