French Bank Registry Data Breach Affects 1.2 Million Customer Accounts

Vaibhav February 20, 2026
French-Bank-Registry-Data-Breach-Affects-1-2-Million-Customer-Accountsdata
Post Views: 185

Cybersecurity Incident at French Ministry of Finance

A cybersecurity incident at the French Ministry of Finance has resulted in the unauthorized access of sensitive data associated with approximately 1.2 million user accounts. The breach occurred at the national bank account registry, known as FICOBA, which is managed by the French tax authority, the Direction générale des Finances publiques (DGFiP).

Investigation and Response

According to the Ministry’s investigation, a threat actor gained access to the interministerial information sharing platform using stolen credentials from a civil servant. The compromised credentials provided the hacker with access to a portion of the database containing personal and financial information, including bank account details, account holder identities, physical addresses, and taxpayer identification numbers.

The Ministry reported that it took immediate action to restrict the threat actor’s access to its systems after detecting the incident. However, it is believed that the data of approximately 1.2 million accounts were exposed to potential exfiltration before the breach was contained.

FICOBA System and Impact

FICOBA is a centralized registry of bank accounts in France, operated by the DGFiP. The system records the existence and identifiers of accounts, with data provided by French banking institutions in accordance with tax enforcement law requirements. The cyberattack has disrupted the system’s operations, and efforts are underway to restore it with enhanced security measures.

Notification and Response

The Ministry has stated that users affected by the incident will be notified individually over the next few days. Banking institutions in the country have been informed of the breach and are expected to take action to raise awareness among their customers of the need for increased vigilance.

Investigation and Prevention

The French data protection authority, CNIL, has been informed of the incident, and the DGFiP’s IT team is working with the Ministry of Finance and the National Cybersecurity Agency of France (ANSSI) to strengthen system security and bring it back to full operational status.

In the wake of the breach, the Ministry has warned citizens of numerous scam attempts circulating via email and SMS that aim to steal data or money directly from recipients. The tax administration has emphasized that it never asks for login credentials or bank card numbers via message.

Conclusion

The incident highlights the importance of robust cybersecurity measures to protect sensitive data and prevent unauthorized access. The French authorities are working to restore the FICOBA system and prevent similar breaches in the future.



About Author

Vaibhav

See author's posts

More Stories

Booking-com-Data-Breach-Exposes-Customer-Reservation-Information

Booking.com Data Breach Exposes Customer Reservation Information

Vaibhav April 14, 2026
European-Fitness-Chain-Basic-Fit-Confirms-Massive-Data-Breach-Exposing-1-Million-Members

European Fitness Chain Basic-Fit Confirms Massive Data Breach Exposing 1 Million Members

Vaibhav April 14, 2026
European-Commission-Data-Breach-Tied-to-Trivy-Supply-Chain-Vulnerability

European Commission Data Breach Tied to Trivy Supply Chain Vulnerability

Vaibhav April 4, 2026

Latest Cyber Security News

Not-All-CISO-Roles-Are-Equally-Demanding-and-Challenging-Insights-from-ESET-Mimecast-at-RSAC

Not All CISO Roles Are Equally Demanding and Challenging: Insights from ESET, Mimecast at RSAC

Vaibhav April 15, 2026
Sitehops-SAFEcore-Edge-Offers-Ultra-Low-Latency-Post-Quantum-Encryption-Solutions

Sitehops SAFEcore Edge Offers Ultra-Low Latency Post Quantum Encryption Solutions

Vaibhav April 15, 2026
IPL-Ticket-Scam-Woman-Loses-52-500-Using-Fake-QR-Codes-in-Bengaluru

IPL Ticket Scam: Woman Loses ₹52,500 Using Fake QR Codes in Bengaluru

Vaibhav April 15, 2026
India-s-Largest-Cryptocurrency-Scandal-Worth-17-000-Crore

India’s Largest Cryptocurrency Scandal Worth ₹17,000 Crore

Vaibhav April 15, 2026
Microsoft-Resolves-Critical-Bug-Affecting-Automatic-Windows-Server-2025-Updates

Microsoft Resolves Critical Bug Affecting Automatic Windows Server 2025 Updates

Vaibhav April 15, 2026
en_USEnglish
en_USEnglish