ETSI

The ETSI IT team worked closely with the French National Cybersecurity Agency (ANSSI) to investigate and fix the information systems after a cyberattack was noticed on the ETSI portal, the IT system dedicated to its members' activity.

ETSI suspects that someone has stolen the database including a list of its internet users.

Since the incident, ETSI has reinforced its IT security protocols significantly, rectified the vulnerability, and adopted additional security measures with the help of ANSSI experts.

In accordance with the General Data Protection Regulation, a notification has also been sent to the French data protection authority (CNIL).

Source: https://www.etsi.org/newsroom/news/2267-etsi-faced-a-cyberattack

TPRM report: https://scoringcyber.rankiteo.com/company/etsi

"id": "ets1122181023",
"linkid": "etsi",
"type": "Data Leak",
"date": "09/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Telecommunications',
                        'location': 'France',
                        'name': 'ETSI',
                        'type': 'Organization'}],
 'data_breach': {'type_of_data_compromised': ['Database including a list of '
                                              'its internet users']},
 'description': 'ETSI IT team worked closely with ANSSI to investigate and fix '
                'the information systems after a cyberattack was noticed on '
                "the ETSI portal, the IT system dedicated to its members' "
                'activity. ETSI suspects that someone has stolen the database '
                'including a list of its internet users. Since the incident, '
                'ETSI has reinforced its IT security protocols significantly, '
                'rectified the vulnerability, and adopted additional security '
                'measures with the help of ANSSI experts. In accordance with '
                'the General Data Protection Regulation, a notification has '
                'also been sent to the French data protection authority '
                '(CNIL).',
 'impact': {'data_compromised': ['Database including a list of its internet '
                                 'users'],
            'systems_affected': ['ETSI portal']},
 'post_incident_analysis': {'corrective_actions': ['Reinforced IT security '
                                                   'protocols',
                                                   'Rectified the '
                                                   'vulnerability',
                                                   'Adopted additional '
                                                   'security measures']},
 'regulatory_compliance': {'regulations_violated': ['General Data Protection '
                                                    'Regulation'],
                           'regulatory_notifications': ['Notification sent to '
                                                        'the French data '
                                                        'protection authority '
                                                        '(CNIL)']},
 'response': {'communication_strategy': ['Notification sent to the French data '
                                         'protection authority (CNIL)'],
              'containment_measures': ['Reinforced IT security protocols',
                                       'Rectified the vulnerability',
                                       'Adopted additional security measures'],
              'incident_response_plan_activated': True,
              'third_party_assistance': ['ANSSI']},
 'title': 'Cyberattack on ETSI Portal',
 'type': 'Data Breach'}

ETSI

Lazarus Naturals

Estes Forwarding Worldwide

Synnovis