Regulator reports suggest telco was extorted, but company remains coy as to whether it paid

French telco Eurofiber says cybercriminals swiped company data during an attack last week that also affected some internal systems.

The B2B wholesale telco confirmed that only its French business was affected by the November 13 attack, including its cloud division and regional brands Eurafibre, FullSave, Netiwan, and Avelia.

In a disclosure published on Sunday, Eurofiber said attackers exploited a vulnerability in its ticket management platform and stole the data it stored. This did not include banking details or other critical data, it confirmed, and the vulnerability is now patched.

The telco did not specify the scale of the attack or how many individuals were affected in France but those located in Belgium, Germany, and the Netherlands are safe.

The overall impact on Eurofiber's business was "limited," it said, although some systems used by indirect sales and wholesale partners were affected operationally. Customer-facing services were "fully operational" throughout the incident ...