"The attackers were able to access the Fichier des Comptes Bancaires et Assimilés (FICOBA) database, which contains files on all bank accounts opened in France. Stolen credentials were used by the threat actors to impersonate a civil servant and view data that included personal information such as bank account numbers, account holders' names and addresses, IBANs, and, in some cases, the account owner's tax number."
"Credentials stolen from a single government official enabled threat actors to access a French national database containing data on more than 1.2 million bank accounts. "Starting at the end of January 2026, a malicious actor, who had impersonated a civil servant with access rights as part of an inter-ministerial information exchange, was able to consult a portion of this file," FICOBA said in a ."
Stolen credentials from a single government official gave threat actors access to France's Fichier des Comptes Bancaires et Assimilés (FICOBA) database. The breach exposed information on more than 1.2 million bank accounts. Accessed records included bank account numbers, IBANs, account holders' names and addresses, and in some cases tax numbers. The attackers impersonated a civil servant using the stolen credentials during an inter-ministerial information exchange. The unauthorized consultations began at the end of January 2026. The incident indicates credential compromise and insufficient access controls enabled sensitive financial data exposure.
Read at DataBreaches.Net
Unable to calculate read time
Collection
[
|
...
]