French retail giant Auchan is notifying hundreds of thousands of its customers that their personal data has been compromised following a recent cyberattack. The company confirmed that a security incident resulted in unauthorized access to customer loyalty accounts, exposing personal details but assuring that no financial information was stolen.
The breach, which was first identified on August 21, marks the second significant data security incident for the retailer in less than a year, following a similar attack in November 2024. According to Auchan, the compromised data includes customers’ full names, postal and email addresses, phone numbers, and loyalty card numbers. Crucially, the company stated that passwords, PINs, and banking details were not affected by the breach.
In a statement, Auchan confirmed it has taken “all necessary measures” to contain the attack and has notified the French Data Protection Authority (CNIL). The retailer is now focused on informing affected individuals directly and urging them to be extra vigilant against potential phishing attempts. The stolen information, while not financial, is a prime target for cybercriminals looking to conduct social engineering and targeted phishing campaigns. The company explicitly warned customers that it would never ask for login details, passwords, or PINs via email, SMS, or phone calls.
This latest incident at Auchan underscores a growing trend of cyberattacks targeting large retailers and telecommunication companies in France. The breach comes shortly after a separate attack on Bouygues Telecom, which impacted millions of customers. Cybersecurity experts note that retail chains are particularly attractive targets for data thieves due to the vast amounts of personal information collected through loyalty programs.
While Auchan has moved to contain the breach and notify affected customers, the repeated nature of these attacks raises concerns about the company’s long-term cybersecurity posture and its ability to protect consumer data. For now, customers are advised to monitor their accounts closely and report any suspicious communications immediately.
