A new threat looms over the French cybersecurity landscape. This Tuesday, an announcement published on the social network A mysterious hacker, using the pseudonym “LaFouine”, claims to have gotten his hands on a massive database containing the personal information of millions of Carrefour customers. This revelation comes in an already tense context for French companies, faced with an increase in cyberattacks in recent months.
Cybersecurity specialist Clément Domingo quickly relayed the information about X, propelling the matter to the forefront of the media scene. According to initial analyses, the allegedly stolen data includes a full range of sensitive information: surnames, first names, postal addresses, telephone numbers, emails, dates of birth, and even the purchasing preferences of the customers concerned. A breach which, if confirmed, would constitute one of the largest leaks of personal data in France this year.
A two-step reaction at Carrefour
🚨🔴CYBERALERT 🇫🇷FRANCE🔴 |
Carrefour cyberattack, LaFouine definitely does not have 13M accounts in his possession… or when the cybercriminals are bluffing!Claiming responsibility for cyberattacks on major French brands in recent months has become a national sport in the industry… pic.twitter.com/PjQ00AMNNn
— SaxX ¯_(ツ)_/¯ (@_SaxX_) January 21, 2025
Faced with this potential threat, Carrefour initially adopted a cautious approach. In a first press release, the group confirmed to have been “informed” of a ” possible ” cillegitimate connection on “one of their IT systems or that of one of their partners”. A measured response that quickly evolved after a thorough analysis of the situation.
The group’s cybersecurity teams immediately launched a complete investigation of their IT infrastructures. The results of these checks allowed Carrefour to radically change its position. “ The verifications allow us to affirm that Carrefour’s systems have not been the subject of an illegitimate connection and that our customers’ data has not been compromised. “, declared the group in a second, more affirmative press release.
Gray areas that persist
The case takes an even more intriguing turn with the hacker’s statements. “LaFouine” claims to have a “surprise” that he promises to reveal in the coming days. A classic intimidation tactic that nonetheless raises questions about the credibility of his allegations.
Several elements have in fact cast doubt on the authenticity of this cyberattack. The recently created profile of “LaFouine” on the dark web calls out to cybersecurity experts. Clément Domingo himself emphasizes that there is no “ no certainty about the veracity of this basis » data. The unusual format of the information presented and the absence of tangible evidence reinforce these suspicions.
This case is part of a broader wave of cyberattacks targeting large French companies. Free Mobile notably suffered from a major data leak affecting nearly 20 million subscribers. A case which recently concluded with the arrest and bringing before the courts of the main suspect.
For now, Carrefour maintains its position and ensures that its customers’ data is secure. The group nevertheless remains vigilant in the face of this potential threat.
- A hacker claims to have stolen the data of 13 million Carrefour customers
- After an in-depth analysis, the group formally denies any intrusion into its systems
- Authenticity of threat questioned by experts due to several inconsistencies
By: Bitdefender
