ETSI has confirmed that a database containing its online user list was exfiltrated in a security breach, prompting the organization to fix the vulnerability and significantly strengthen its IT security procedures under the guidance of ANSSI experts. Following the incident, ETSI has requested that all online service users change their passwords to ensure account safety. A judicial inquiry is currently underway, and the French data protection authority (CNIL) has been notified in compliance with GDPR requirements. ETSI Director-General Luis Jorge Romero emphasized the organization’s commitment to transparency and rapid adaptation to crises while maintaining business continuity for staff and members.
Source: https://www.etsi.org/newsroom/news/2267-etsi-faced-a-cyberattack/
Keywords: security breach, GDPR compliance, password reset, ANSSI guidance, business continuity