Intersport announces that it has been the victim of a cyberattack. The sports retailer is currently alerting its customers about the intrusion. In the warning sent to its customers, the brand states that it has observed "a consultation of your personal data which could lead to a loss of confidentiality of some of your personal information.".
Intersport recommends changing your password
Among the exfiltrated data are your first and last name, email address, and postal address. Fortunately, banking information and passwords were not compromised. Intersport nevertheless recommends "changing your password on the intersport.fr website and, above all, never sharing your personal information such as usernames, passwords, account numbers and/or bank cards.".
The retailer admits that its customers could be targeted by phishing campaigns via email. It is "possible that you may receive unwanted emails appearing to come from" the brand. Caution is advised. This attack is part of a series of similar incidents that have affected Intersport in recent years, including ransomware attacks in 2022 and 2024. The brand had found itself in the sights of gangs like Hive and Hunters.
Data for sale on BreachForums
As reported by researcher Clément Domingo, Intersport customer data was put up for sale on BreachForums, the hub for compromised information, a few days earlier. According to the seller, the database includes the information of 3.4 million people. The hacker claims to have obtained other personal data during the intrusion, which occurred on March 15, 2025.
In the samples posted online, he highlights other data than that mentioned by Intersport, including data related to customer purchases, such as an invoice number, a PayPal reference number, the amount paid, the type of credit card used, and the loyalty card number. This data covers all aspects of a transaction, from payment information to delivery details, products, and security checks carried out by Intersport.
The cybercriminal initially put the directory up for auction at a minimum price of $2,500. The hacker, who calls himself placenta, later lowered the price. The database is being offered for $1,000 in cryptocurrency. Clément Domingo believes the attack likely involved the purchase of fraudulent access. Indeed, "in December 2024, access to the INTERSPORT system was on sale for $700," the researcher said. According to Zataz, hackers accessed the company's FTP (File Transfer Protocol) server. The specialist blog attributes the sharing of a "configuration file containing all the passwords for the Intersport server" to a group of hackers responsible for attacks against French telecom operators last year. We're thinking in particular of the hacks on Free and SFR.
AutoSur, Vitalis… the data leaks keep coming
This isn't the only data leak that has hit the French. Several other brands have just notified their customers of a breach. This is the case for AutoSur, a network specializing in vehicle technical inspections. More than ten million names, addresses, and vehicle information ended up on BreachForums following the cyberattack. The directory is currently for sale, and bids are soaring above $50,000.
Also worth mentioning is the hack on the customer service provider Vitalis, which resulted in the theft of the personal information of more than 202,000 customers. As feared, the number of data leaks continues to explode in France, increasing the dangers facing the French.
0 Comments