French Bank Account Data Breach: 1.2 Million Accounts Exposed

Post Views: 18

France’s National Bank Account Registry Hit by Data Breach

A data breach at France’s national bank account registry, FICOBA, has resulted in the unauthorized access of information tied to 1.2 million bank accounts.

Incident Details

The incident occurred in late January 2026, when a malicious actor obtained login credentials belonging to a civil servant authorized to use the database. The perpetrator used the stolen credentials to access the database and view sensitive information, including international bank account numbers (IBANs), account holders’ names, addresses, and tax identification numbers issued by the Directorate-General for Public Finance (DGFiP). In some cases, the accessed data also included the account holder’s tax identification number.

Response and Notifications

The Ministry of the Economy and Finance has disclosed that impacted individuals will be contacted directly in the coming days. Banks have also been alerted to advise customers to remain vigilant. The authorities have notified the French data protection authority (CNIL) about the incident and have filed a criminal complaint.

Recent Cybersecurity Incidents in France

This breach is the latest in a series of cybersecurity incidents to affect French organizations. In recent months, the French postal service (La Poste) and its subsidiary La Banque Postale suffered a DDoS attack, while the French Ministry of the Interior experienced a cyber attack that compromised its servers. In 2024, attackers breached the French national unemployment agency, France Travail, and a government employment service for people with disabilities, Cap emploi, accessing data of jobseekers.

Impact and Recommendations

The accessed information in this latest breach does not allow threat actors to check bank account balances or initiate transactions. However, it could enable fraudsters to pose as legitimate creditors and request direct debit payments. The French Banking Federation (FBF) has advised bank account holders to regularly check their accounts and listed transactions, monitor direct debit transactions, and be cautious of social engineering attacks.

“The accessed information is not sufficient to allow fraudsters to make a transfer or payment by card.” – French Banking Federation (FBF)

The FBF has emphasized that the accessed information is not sufficient to allow fraudsters to make a transfer or payment by card. Nevertheless, the breach highlights the importance of vigilance and robust security measures to protect sensitive information. The incident is currently under investigation, and the authorities are working to identify the perpetrator and prevent further unauthorized access.