Freedom Mobile, the fourth-largest wireless carrier in Canada, has disclosed a data breach after attackers hacked into its customer account management platform and stole the personal information of an undisclosed number of customers.
Founded in 2008 as Wind Mobile by telecommunications provider Globalive, Freedom has over 2,2 million subscribers and now says it provides coverage to 99% of Canadians.
Vidéotron, a subsidiary of Canadian telecommunications company Québecor, acquired Freedom in 2023, creating the country's fourth major wireless carrier with more than 3.5 million mobile customers and nearly 7,500 employees.
In a data breach notification published today, Freedom said it detected a breach of its customer account management platform on October 23.
"Our investigation revealed that a third party used the account of a subcontractor to gain access to the personal information of a limited number of our customers," Freedom stated.
"We quickly identified the incident and implemented corrective measures and security enhancements, including blocking the suspicious accounts and corresponding IP addresses."
The personal and contact information exposed in the incident includes first and last names, home addresses, dates of birth, home and/or cell phone numbers, and Freedom Mobile account numbers.
Although it found no evidence that the compromised data has been misused since the breach, the wireless carrier advised affected customers to be suspicious of unexpected messages
Freedom Mobile cybersecurity rating report: https://www.rankiteo.com/company/freedom-mobile
"id": "FRE1764799743",
"linkid": "freedom-mobile",
"type": "Breach",
"date": "10/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Undisclosed number',
'industry': 'Telecommunications',
'location': 'Canada',
'name': 'Freedom Mobile',
'size': 'Over 2.2 million subscribers, '
'nearly 7,500 employees',
'type': 'Wireless Carrier'}],
'attack_vector': 'Third-party subcontractor account compromise',
'customer_advisories': 'Advised affected customers to be '
'suspicious of unexpected messages',
'data_breach': {'data_encryption': None,
'data_exfiltration': 'Yes',
'file_types_exposed': None,
'number_of_records_exposed': None,
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['First and last '
'names',
'Home addresses',
'Dates of birth',
'Home and/or cell '
'phone numbers',
'Freedom Mobile '
'account numbers']},
'date_detected': '2023-10-23',
'date_publicly_disclosed': '2023-10-23',
'description': 'Freedom Mobile disclosed a data breach after '
'attackers hacked into its customer account '
'management platform and stole the personal '
'information of an undisclosed number of '
'customers.',
'impact': {'brand_reputation_impact': None,
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': 'Personal and contact information',
'downtime': None,
'financial_loss': None,
'identity_theft_risk': 'High',
'legal_liabilities': None,
'operational_impact': None,
'payment_information_risk': None,
'revenue_loss': None,
'systems_affected': 'Customer account management '
'platform'},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': 'Subcontractor account',
'high_value_targets': None,
'reconnaissance_period': None},
'investigation_status': 'Ongoing',
'post_incident_analysis': {'corrective_actions': 'Security '
'enhancements '
'and blocking '
'of suspicious '
'accounts/IPs',
'root_causes': 'Third-party '
'subcontractor account '
'compromise'},
'ransomware': {'data_encryption': None,
'data_exfiltration': None,
'ransom_demanded': None,
'ransom_paid': None,
'ransomware_strain': None},
'recommendations': 'Affected customers advised to be suspicious '
'of unexpected messages',
'references': [{'date_accessed': None,
'source': 'Freedom Mobile Data Breach '
'Notification',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': None,
'regulations_violated': None,
'regulatory_notifications': None},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': 'Published data breach '
'notification',
'containment_measures': 'Blocked suspicious '
'accounts and corresponding '
'IP addresses',
'enhanced_monitoring': None,
'incident_response_plan_activated': 'Yes',
'law_enforcement_notified': None,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': 'Implemented corrective '
'measures and security '
'enhancements',
'third_party_assistance': None},
'title': 'Freedom Mobile Data Breach',
'type': 'Data Breach'}