French retailer Auchan is informing that some delicate knowledge related to loyalty accounts of a number of hundred thousand of its clients was uncovered in a cyberattack.
The corporate is sending data breach notifications to clients affected by the incident.
“We’re writing to tell you that Auchan has been the sufferer of a cyberattack. This assault resulted in unauthorized entry to sure private knowledge related together with your loyalty account,” reads the retailer’s notification.
In keeping with the pattern of the discover, the info uncovered within the assault contains full names, title and shopper standing, postal handle, e mail handle, telephone quantity, and loyalty card quantity.
The retailer underlines that financial institution knowledge, passwords, and PIN numbers haven’t been impacted.
Supply: Zataz
In a press release for French media, an organization consultant stated that knowledge belonging to “a number of hundred thousand” of its clients was uncovered containing the incident.
Auchan is a French multinational retail group working over 2,100 branches throughout 13 nations in Europe and Africa. The chain employs 154,000 individuals and has an annual income of over $35 billion.
The corporate stated it has notified the French Data Safety Authority (CNIL) in regards to the data breach.
Within the meantime, Auchan advises letter recipients to stay vigilant for potential phishing assaults leveraging the stolen data.
“We remind you that Auchan won’t ever ask you (whether or not by e mail, SMS, or telephone) in your login particulars, passwords, or loyalty card PIN code,” warned Auchan.
“Should you obtain such a message, don’t click on on any hyperlink, don’t name the indicated quantity, and ignore the knowledge it incorporates, as it’s most certainly a phishing try.”
BleepingComputer contacted Auchan a number of days in the past to request extra details about the assault, however the firm has not offered a reply.
The data breach at Auchan comes shortly after comparable disclosures made by different giant entities in France, together with Air France and KLM, Orange, and Bouygues Telecom, a few of which had been linked to ShinyHunters’ assaults on Salesforce.
At the moment, there is not any proof linking these assaults or suggesting a coordinated marketing campaign focusing on giant companies within the nation.
46% of environments had passwords cracked, almost doubling from 25% final 12 months.
Get the Picus Blue Report 2025 now for a complete take a look at extra findings on prevention, detection, and knowledge exfiltration tendencies.
