This post is also available in:
עברית (Hebrew)
A new cybersecurity threat is emerging from the Babuk ransomware group, which has made alarming claims about a massive data breach at Orange, a major telecom provider. According to Cybernews, in a post made on the gang’s leak site on the dark web, Babuk claims it hacked into Orange’s systems on March 16, 2025, and stole an estimated 4.5 terabytes of sensitive data. The criminals have threatened to release one terabyte of this data if Orange refuses to engage in negotiations.
The stolen data allegedly includes a wide array of sensitive information such as email addresses, customer records, internal documents, contracts, user data, employee information, invoices, credit card details, call logs, and more. Babuk even boasted that this was only a sample of what they had accessed, hinting at even larger quantities of data in their possession.
If the claims prove true, the breach could have serious ramifications for Orange’s customers. The exposure of personally identifiable information (PII) and other confidential data could lead to phishing attacks and other forms of targeted cyberattacks. Given the scale of the data, the potential for exploitation is significant, and the attackers have implied they may release even more data if their demands are not met.
According to Cybernews, this cyberattack is part of a broader series of high-profile breaches that Babuk ransomware has allegedly been involved in since its reemergence in January 2025. The group, which first surfaced in 2020, targets large enterprises with ransomware-as-a-service operations. In the past month alone, Babuk has reportedly compromised over 30 organizations
Orange, which operates in 26 countries and serves millions of customers, has yet to confirm the breach. As of now, the scale and impact of the alleged attack remain unconfirmed.
