Picard, new victim of the wave of cyber attacks that has hit French companies and administrations in recent weeks. According to Le Parisien on Tuesday, the frozen food retailer warned some of the ten million customers of its loyalty program that their data is in the wild. “We have detected, through technical measures implemented by Picard, unauthorized access to your Picard account by third parties.”explains the company in an e-mail sent to 45,000 people.

No banking information stolen

Several sensitive pieces of information, such as customers’ surnames, first names, dates of birth, e-mails, postal addresses and telephone numbers, are in the hands of the hackers, but not bank details. Picard states that it has “not detected any intrusion”. in its information systems, suggesting an attack by “credential stuffingor “identifier stuffing. Using data stolen in previous attacks, the hackers may have attempted thousands of combinations of logins and passwords to access Picard customers’ personal spaces. The frozen food retailer explains that it has notified the attack to the French Data Protection Authority (CNIL) and “… has taken all necessary measures to protect its customers.reinforced surveillance and security controls“.

In recent months, numerous companies have announced that they have suffered similar attacks, including two telecom operators: SFR in September and Free in October. A few weeks ago, the French Ministry of Labor also reported similar attacks. “the act of cyber-maliciousness” on the night of October 23-24. The service provider is used by the Missions locales.