If you hold a French issued CallSign or MMSI, you need to be aware of a recent security incident. The Agence Nationale des Fréquences (ANFR) has reported a data breach within their Radiomaritime online service. This service is widely used by yacht owners to manage their marine radio licences. The ANFR detected the breach in April 2026 and immediately shut down the affected system to prevent further unauthorised access.

In this article, we will explain the details of the ANFR data leak in plain English. We will cover the specific information that was exposed and, crucially, the information that remains safe. We will also provide practical advice on how to spot fraudulent emails or text messages that might target you in the coming weeks.

 

What Happened at the ANFR?

Between the fourth of April and the tenth of April 2026, the ANFR experienced a malfunction in their Radiomaritime service management. During this time, unauthorised individuals gained access to the user accounts on the platform. The ANFR reports that the data of approximately 330,000 users was extracted.

Upon discovering the incident on the thirteenth of April, the ANFR took immediate action. They suspended all access to the Radiomaritime service and added extra security measures, including enhanced firewalls and connection logging. They also reported the incident to the French data protection authority (CNIL) and filed a formal complaint with the public prosecutor so that an investigation can take place.

 

Which Personal Data Was Exposed?

It is vital to know exactly what information the attackers managed to copy. The ANFR has confirmed that the following personal details were compromised:

  • Your first name and surname
  • Your postal address, if you provided one
  • Your telephone numbers, if you provided them
  • Your email address
  • Your date of birth, if it was in the system

While this is certainly frustrating, there is some positive news. The attackers did not access any data regarding your actual licences, nor did they access any attached documents. Your boat registration details, your CallSign, and your MMSI (Maritime Mobile Service Identity) remain secure. Furthermore, no payment information or bank details were exposed during this incident.

 

The Risk of Unsolicited Emails and Scams

Because the attackers now have a list of names, email addresses, and phone numbers, they will likely try to use this information to conduct targeted scams. This is often called phishing. The scammers might send you an email or a text message that looks exactly like an official communication from the ANFR or another maritime authority.

These messages can be very convincing because they might include your real postal address or your date of birth to gain your trust. Their goal is usually to trick you into clicking a malicious link, downloading malware onto your computer, or revealing more sensitive information like your banking details.

You must remain highly vigilant. The ANFR has explicitly stated that they will never ask you to provide your bank details (RIB) or your passwords via email or over the telephone. If you receive a message asking for this kind of information, it is a scam.

 

Practical Steps to Protect Yourself

Here are some simple, practical steps you can take right now to protect your personal information and your devices:

  • Check the sender address: If you receive an email claiming to be from the ANFR, look closely at the email address. The official domain is “@anfr.fr”. Scammers often use addresses that look similar but have slight spelling changes.
  • Do not click suspicious links: If an email asks you to log in to verify your account, do not click the link provided in the message. Instead, open your web browser and type the official ANFR website address yourself.
  • Do not download unexpected attachments: If you receive an unsolicited email with an attachment, do not open it. It could contain malware that might compromise your computer.
  • Verify by telephone: If you are unsure whether an email or a phone call is genuine, hang up or ignore the email. You can then contact the ANFR directly using the official contact details provided on their legitimate website.

 

Maintaining Your Yacht Compliance

Despite this temporary closure of the Radiomaritime online service, it is still your responsibility to ensure your yacht operates with the correct and valid radio licences. We know that dealing with paperwork and flag state regulations can be a headache, especially when online portals are down for maintenance or security patches.

The ANFR is currently deploying security fixes and will reopen the service as soon as it is safe to do so. In the meantime, you should keep physical or digital copies of your current CallSign and MMSI certificates on board your vessel.