Ransomware victim disclosure
← All victimsLa Poste Mobile
listed as lapostemobile.fr · Claimed by Lv · listed 3 years ago
Status timeline
- ListedDec 20, 2023
- Data leakeddate unknown
At a glance
- Group
- Lv
- Status
- Data leaked
- Country
- France
- Sector
- Telecommunications
- Listed on leak site
- Dec 20, 2023
About the victim
AI dossier — public-source company profileLa Poste Mobile is a French mobile telecommunications operator and subsidiary of Poste Italiane S.p.A. (despite the French domain and operations). It operates as a full MVNO, offering mobile phone plans, SIM cards, and since 2018, fixed-line telephone and internet services. The company serves 2.5 million customers and operates through over 6,000 post offices across France.
- Industry
- Telecommunications - Mobile Virtual Network Operator (MVNO)
- Founded
- 2009
Attack summary
Severity: medium — Data exfiltration is claimed and disclosure status is 'data_published', but no specific proof files, screenshots, or data inventory are detailed in the provided leak post excerpt. The company operates at significant scale (2.5M customers, major French telco subsidiary), making any confirmed breach of customer or operational data inherently sensitive, but without clear evidence of the data type or volume, confidence remains moderate.The group claims to have compromised La Poste Mobile and exfiltrated data. Specific details of what data was stolen are not provided in the available excerpt; the post is primarily in Russian and contains only a general company description.
What the group claims
PosteMobile S.p.A. — итальянскаятелекоммуникационная компания,принадлежащая Poste Italiane S.p.A.которая работает в секторе мобильнойтелефонии в качестве операторамобильной виртуальной сети (Full MVNO)в сети Wind, а с 2018 года такжепредлагает фиксированную телефоннуюсвязь и интернет-услуги.
Sources
- Victim sitelapostemobile.fr
Source
Indexed 3 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

