In late February, an alert was issued regarding the sale of personal data of La Poste customers on a pirate site. A cybercriminal calling himself “h4tr3d w0rld” put up for sale a CSV file containing the information of several thousand users of a “sub-division” of La Poste.
The compromised data included sensitive information, such as names, first names, ages, genders, email addresses, telephone numbers and postal addresses. According to the information available, this data was allegedly retrieved on February 25, 2025, which makes them particularly recent.
Five days after the revelation of this leak by ZATAZ, La Poste reacted by alerting the customers concerned. The investigation carried out by the company made it possible to identify that the breach concerned the site “Élection du Timbre“, which was immediately put into maintenance. On this site intended for celebrate and promote philately, we can now see this message:
“Dear Participant, Due to maintenance work, the stamp election website is temporarily unavailable. We are actively working to restore the service as soon as possible. Thank you for your understanding.»
50,000 French people affected by the data leak?
In an official email sent To affected users, La Poste specifies that the compromised information includes:
- First and last name
- Email address
- Postal address
- Year of birth
- Telephone number (if applicable)
However, the company reassures its customers by confirming that no banking data or passwords were stolen. In accordance with the regulations, La Poste has notified the CNIL and filed a complaint a complaint to the judicial authorities to investigate the origin of this incident. In total, the leak concerns nearly 50,000 users.
Following this data leak, La Poste warns against a possible increase in phishing attempts. The people concerned could receive fraudulent messages impersonating La Poste. They must be extra vigilant when faced with suspicious emails, text messages or calls. They should also be wary of communications claiming to come from the postal services. Finally, it should be remembered that La Poste advisors never ask for passwords or confidential information over the phone.
This case is in addition to the long list of data leaks recorded in France in recent months. All over the world, the number of cyberattacks is increasing and this particularly affects French companies (France Travail, E.Leclerc, TopAchat, SFR, etc.).
0 Comments