Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Auchan customer data exposed after Auchan breach

Data Leak
First reported
Last updated
Happening score
H score 17
1 unique sources, 1 articles

Summary

Hide ▲

Auchan has disclosed a cyberattack that exposed loyalty-account personal data for several hundred thousand customers. The breach matters because names, contact details, and loyalty-card numbers can be abused in phishing or impersonation attempts. The company says it has started sending breach notices and has notified the CNIL. It also said bank data, passwords, and PIN numbers were not impacted.

Related Happenings

ShinyHunters Salesforce extortion campaign against global companies in 2025

Campaign
First: 15.01.2026 17:45 Last: 15.01.2026 17:45 Sources 1

About this happening: The **ShinyHunters** campaign now includes a **Qantas** breach disclosed after the airline found a **June 30, 2025** intrusion in a **third-party platform** used by one customer s...

Open Happening

Discord user data leak after third-party support breach

Data Leak
First: 04.10.2025 14:16 Last: 04.10.2025 14:16 Sources 1

About this happening: A **third-party customer service breach** exposed **partial payment information** and **personally identifying data** for a **limited number of Discord users**, creating fraud and...

Open Happening

UNC6040 and UNC6395 Salesforce data theft and extortion campaign

Campaign
First: 13.09.2025 12:04 Last: 13.09.2025 12:04 Sources 1

About this happening: **Workiva** disclosed that attackers who accessed a **third-party CRM system** stole a **limited set of business contact information** from some customers, including names, email...

Latest development: 08.10.2025 03:17

Salesforce says it will not negotiate with or pay any extortion demand from Scattered Lapsus$ Hunters after the group launched a breachforums[.]hn data leak site to extort 39 companies whose data was stolen from Salesforce; the site now appears shut down and the domain uses surina.ns.cloudflare.com and hans.ns.cloudflare.com nameservers.

Open Happening

Qantas Group hit by network compromise

Incident
First: 09.09.2025 22:17 Last: 09.09.2025 22:17 Sources 1

About this happening: **Qantas Group** disclosed a **cyberattack** that breached a **third-party customer service platform**, exposing customer **PII** and affecting about **5.7 million passengers**. T...

Open Happening

Wealthsimple hit by cyberattack

Incident
First: 05.09.2025 18:36 Last: 05.09.2025 18:36 Sources 1

About this happening: Wealthsimple disclosed a **data breach** that exposed customer personal data and affected **less than 1% of clients**. The company said it detected the incident on **2025-08-30**...

Latest development: 05.09.2025 20:21

Wealthsimple disclosed a data breach after unauthorized access to personal data belonging to less than 1% of clients, said no funds were stolen and passwords were not compromised, notified impacted customers by email, and offered two years of credit monitoring, dark-web monitoring, identity theft protection, and insurance; the company later said the incident is not related to Salesforce.

Open Happening

Timeline

  1. 25.08.2025 21:56 1 articles · 9mo ago

    Auchan discloses customer loyalty-account data exposure

    Initial Disclosure

    Auchan says unauthorized access to loyalty-account data exposed personal details for several hundred thousand customers, including full names, title and client status, postal address, email address, phone number, and loyalty card number. The retailer says bank data, passwords, and PIN numbers were not impacted, has started sending breach notices to affected customers, notified the French Data Protection Authority (CNIL), and warned recipients to watch for phishing attempts using the stolen information.

    Show sources
    Open in new tab