Cyber Incident Victim: Ministry of Economy

France’s Ministryof Economy disclosed on Wednesday that a breach had exposed information on 1.2 million bank accounts. Investigators determined that unauthorized access had been gained to the national bank account registry known as FICOBA. The intrusion began when a threat actor stole credentials belonging to an official within the ministry. Those stolen credentials were then used to log into the database that stores details on every bank account opened in France.

The breach took place in late January and affected approximately 1.2 million accounts. The data that was accessed included International Bank Account Numbers (IBANs), the names of account holders, their postal addresses, and in certain instances tax identification numbers. Officials confirmed that the attacker did not obtain the ability to perform banking transactions or to view account balances. Despite this limitation, the exposed personal information could be leveraged for social engineering schemes.

Following the discovery, the ministry terminated the attacker’s access to the system. Affected individuals are being notified of the incident and advised to remain vigilant against potential scams and phishing attempts. The ministry has stated that it is working to secure the registry and prevent further unauthorized access. No further details about the attacker’s identity or motives have been released in the disclosed information.