Indigo, a French company specializing in parking, announced that it had been the target of a cyberattack. In an email sent to its customers, and reviewed by 01net, the group indicated that it had recorded a "cybersecurity incident." Specifically, "malicious individuals" were able to break into the company's computer system, which operates in more than 500 cities and manages 1.7 million parking spaces.
Name, license plate, address...
Once in the system, the attackers were able to gain "unauthorized access to certain personal data" of Indigo users. Among the data accessed by hackers were your email address, license plate number, name, phone number, and postal address. This is more than enough to mount a convincing phishing attack.
However, "no banking information, password, or means of accessing your INDIGO Neo account", the Indigo Group's application that allows users to easily manage their on-street and in-park parking lots, was compromised. Cybercriminals will not be able to log into customer accounts. Indigo did not specify how many people were affected by the data breach.
In collaboration with cybersecurity researchers, Indigo says it "immediately took the necessary measures to contain the incident and strengthen the security" of its systems. In accordance with the law, the company "filed a complaint and the incident was also notified to the relevant authorities." In short, Indigo has notified the French Data Protection Authority (CNIL) of the incident. The agency responsible for data protection is free to open an investigation into the matter to determine whether Indigo has properly protected the personal information in its possession.
Data not yet exploited
Aware of the risks of phishing and other scams that weigh on its users, Indigo recommends that all its customers exercise vigilance. However, there is still no evidence that the data has already been exploited by cybercriminals to carry out scams.
As a precaution, Indigo asks its customers to change the password associated with their Indigo Neo account. If you have reused the same password on other services, change it immediately. Choose a password different from the one on your other accounts.
Indigo joins the long list of French companies that have suffered a personal data leak. In the first months of 2025, dozens of companies were hacked, such as Alain Afflelou, Kiabi, and Thermomix. More than 2.1 million French accounts were hacked during this period.
0 Comments