In this letter, the company invites its customers “to exercise the greatest vigilance at the risk of fraudulent emails, SMS or calls”.
The northern distributor Auchan was “the victim of a cyberattack” targeting “part of the personal data” of more than 500,000 customers “associated with a loyalty account”, a spokesperson for the group said on Tuesday.
This data concerns “the last name, first name, email address, postal address, telephone number, family composition if provided, date of birth, loyalty card number and the amount of the prize pool loyalty”, detailed this spokesperson.
On the other hand, “banking data, passwords and PIN codes for loyalty cards are not affected”, she assured, specifying that the incident had been “contained” and “vigilance reinforced”.
Many brands victims of cyberattacks
This attack was notified to the National Commission for Information Technology and Liberties (Cnil) and to customers, she continued. “All necessary measures were taken immediately to put an end to this attack and strengthen the protection of our information systems,” Auchan said in an email to its customers.
The company, which presented to its staff representatives on November 5 a draft social plan threatening a total of 2,389 jobs in France, invites its customers in this email “to exercise the greatest vigilance at the risk of emails, SMS or calls fraudulent”.
A large data leak revealed in October affected the internet service provider and mobile operator Free. A hacker claimed to have the data of 19.2 million users and some, including banking information, was made public.
On September 19, another mobile operator, SFR, was the subject of a leak of customer data, including banking details, following what it described as a “security incident involving a security tool”. management of its customers’ orders.
In the distribution sector, the cultural products brand Cultura also reported in September a theft of data from one of its service providers, containing personal information of a million and a half customers. The specialist in household appliances and multimedia Boulanger announced in September that it had been the victim of an “act of cybermaliciousness”.