Cyber Incident Victim: Castorama

On or around June 8, 2016, Castorama, a French home improvement retailer, experienced a website compromise affecting its search functionality. Attackers manipulated the site's search engine to return vulgar and offensive suggestions for common DIY tool queries. Searches for standard items like "sander" produced results such as "cock sander," while "hammer" yielded "bollock hammer." More severe anti-Semitic content appeared when users searched for terms like "showers" or "ovens." Evidence indicated deliberate manipulation of search algorithms, including a search for "clou" (nails) that returned a phrase referencing Satanic imagery. The company took its website offline within hours of the incident, replacing the homepage with a French message stating the site was unavailable and thanking visitors for their understanding.

Public awareness spread rapidly through social media, with Twitter users posting screenshots of the altered search results. One tweet mocked the situation by wishing luck to Castorama's support team, while another implied the attackers acted out of boredom. Castorama's official Twitter account acknowledged the disruption with a vague response. The company spokesperson confirmed the incident to media outlets but characterized it as "manipulation" rather than a full-scale hack, avoiding explicit confirmation of external intrusion. An industry expert theorized attackers may have seeded the site with repeated profane searches to influence suggestion algorithms. The incident temporarily disrupted online operations but did not appear to involve data theft or persistent system access. Public exposure was limited to search function manipulation, with no evidence of deeper network compromise or financial impacts disclosed in available reports.